docker.io/minio/minio:RELEASE.2021-06-17T00-10-46Z linux/amd64

docker.io/minio/minio:RELEASE.2021-06-17T00-10-46Z - Trivy安全扫描结果扫描时间: 2024-10-27 20:44

全部漏洞信息

低危漏洞:135

中危漏洞:286

高危漏洞:84

严重漏洞:5

系统OS: redhat 8.4 扫描引擎: Trivy 扫描时间: 2024-10-27 20:44

docker.io/minio/minio:RELEASE.2021-06-17T00-10-46Z (redhat 8.4) (redhat)

低危漏洞:133

中危漏洞:245

高危漏洞:32

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
cyrus-sasl-lib	CVE-2022-24407	高危	2.1.27-5.el8	2.1.27-6.el8_5	cyrus-sasl: failure to properly escape SQL input allows an attacker to execute arbitrary SQL commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24407 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-02-24 15:15 修改: 2023-11-07 03:44
expat	CVE-2022-25235	高危	2.2.5-4.el8	2.2.5-4.el8_5.3	expat: Malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25235 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-02-16 01:15 修改: 2023-11-07 03:44
expat	CVE-2022-25236	高危	2.2.5-4.el8	2.2.5-4.el8_5.3	expat: Namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25236 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-02-16 01:15 修改: 2023-11-07 03:44
expat	CVE-2022-25315	高危	2.2.5-4.el8	2.2.5-4.el8_5.3	expat: Integer overflow in storeRawNames() 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25315 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-02-18 05:15 修改: 2023-11-07 03:44
expat	CVE-2022-40674	高危	2.2.5-4.el8	2.2.5-8.el8_6.3	expat: a use-after-free in the doContent function in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40674 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-09-14 11:15 修改: 2023-11-07 03:52
glibc	CVE-2023-4911	高危	2.28-151.el8	2.28-225.el8_8.6	glibc: buffer overflow in ld.so leading to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-10-03 18:15 修改: 2024-09-17 19:46
glibc	CVE-2024-2961	高危	2.28-151.el8	2.28-251.el8_10.1	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc	CVE-2024-33599	高危	2.28-151.el8	2.28-251.el8_10.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-common	CVE-2023-4911	高危	2.28-151.el8	2.28-225.el8_8.6	glibc: buffer overflow in ld.so leading to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-10-03 18:15 修改: 2024-09-17 19:46
glibc-common	CVE-2024-2961	高危	2.28-151.el8	2.28-251.el8_10.1	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc-common	CVE-2024-33599	高危	2.28-151.el8	2.28-251.el8_10.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-langpack-en	CVE-2023-4911	高危	2.28-151.el8	2.28-225.el8_8.6	glibc: buffer overflow in ld.so leading to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-10-03 18:15 修改: 2024-09-17 19:46
glibc-langpack-en	CVE-2024-2961	高危	2.28-151.el8	2.28-251.el8_10.1	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc-langpack-en	CVE-2024-33599	高危	2.28-151.el8	2.28-251.el8_10.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2023-4911	高危	2.28-151.el8	2.28-225.el8_8.6	glibc: buffer overflow in ld.so leading to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-10-03 18:15 修改: 2024-09-17 19:46
glibc-minimal-langpack	CVE-2024-2961	高危	2.28-151.el8	2.28-251.el8_10.1	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2024-33599	高危	2.28-151.el8	2.28-251.el8_10.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
gzip	CVE-2022-1271	高危	1.9-12.el8	1.9-13.el8_5	gzip: arbitrary-file-write vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47
krb5-libs	CVE-2022-42898	高危	1.18.2-8.el8	1.18.2-25.el8_8	krb5: integer overflow vulnerabilities in PAC parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42898 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-12-25 06:15 修改: 2023-10-08 09:15
libksba	CVE-2022-3515	高危	1.3.5-7.el8	1.3.5-8.el8_6	libksba: integer overflow may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3515 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-01-12 15:15 修改: 2023-07-06 19:15
libksba	CVE-2022-47629	高危	1.3.5-7.el8	1.3.5-9.el8_7	libksba: integer overflow to code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-47629 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-12-20 23:15 修改: 2023-11-07 03:56
libnghttp2	CVE-2023-44487	高危	1.33.0-3.el8_2.1	1.33.0-5.el8_8	HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-10-10 14:15 修改: 2024-08-14 19:57
openssl-libs	CVE-2022-0778	高危	1:1.1.1g-15.el8_3	1:1.1.1k-6.el8_5	openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
openssl-libs	CVE-2023-0286	高危	1:1.1.1g-15.el8_3	1:1.1.1k-9.el8_7	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
systemd	CVE-2021-33910	高危	239-45.el8	239-45.el8_4.2	systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33910 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-07-20 19:15 修改: 2023-11-07 03:35
systemd	CVE-2022-2526	高危	239-45.el8	239-58.el8_6.4	systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2526 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-09-09 15:15 修改: 2023-01-20 03:17
systemd-libs	CVE-2021-33910	高危	239-45.el8	239-45.el8_4.2	systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33910 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-07-20 19:15 修改: 2023-11-07 03:35
systemd-libs	CVE-2022-2526	高危	239-45.el8	239-58.el8_6.4	systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2526 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-09-09 15:15 修改: 2023-01-20 03:17
systemd-pam	CVE-2021-33910	高危	239-45.el8	239-45.el8_4.2	systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33910 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-07-20 19:15 修改: 2023-11-07 03:35
systemd-pam	CVE-2022-2526	高危	239-45.el8	239-58.el8_6.4	systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2526 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-09-09 15:15 修改: 2023-01-20 03:17
xz-libs	CVE-2022-1271	高危	5.2.4-3.el8	5.2.4-4.el8_6	gzip: arbitrary-file-write vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47
zlib	CVE-2018-25032	高危	1.2.11-17.el8	1.2.11-18.el8_5	zlib: A flaw found in zlib when compressing (not decompressing) certain inputs 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-25032 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-03-25 09:15 修改: 2023-11-07 02:56
dbus-libs	CVE-2022-42010	中危	1:1.12.8-12.el8_4.2	1:1.12.8-23.el8_7.1	dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42010 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus-libs	CVE-2022-42011	中危	1:1.12.8-12.el8_4.2	1:1.12.8-23.el8_7.1	dbus: dbus-daemon can be crashed by messages with array length inconsistent with element type 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42011 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus-libs	CVE-2022-42012	中危	1:1.12.8-12.el8_4.2	1:1.12.8-23.el8_7.1	dbus: `_dbus_marshal_byteswap` doesn't process fds in messages with "foreign" endianness correctly 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42012 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus-libs	CVE-2023-34969	中危	1:1.12.8-12.el8_4.2	1:1.12.8-24.el8_8.1	dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36
dbus-tools	CVE-2022-42010	中危	1:1.12.8-12.el8_4.2	1:1.12.8-23.el8_7.1	dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42010 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus-tools	CVE-2022-42011	中危	1:1.12.8-12.el8_4.2	1:1.12.8-23.el8_7.1	dbus: dbus-daemon can be crashed by messages with array length inconsistent with element type 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42011 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus-tools	CVE-2022-42012	中危	1:1.12.8-12.el8_4.2	1:1.12.8-23.el8_7.1	dbus: `_dbus_marshal_byteswap` doesn't process fds in messages with "foreign" endianness correctly 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42012 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus-tools	CVE-2023-34969	中危	1:1.12.8-12.el8_4.2	1:1.12.8-24.el8_8.1	dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36
curl	CVE-2021-22876	中危	7.61.1-18.el8	7.61.1-22.el8	curl: Leak of authentication credentials in URL via automatic Referer 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22876 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-04-01 18:15 修改: 2024-03-27 15:47
curl	CVE-2021-22922	中危	7.61.1-18.el8	7.61.1-18.el8_4.1	curl: Content not matching hash in Metalink is not being discarded 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22922 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:12
curl	CVE-2021-22923	中危	7.61.1-18.el8	7.61.1-18.el8_4.1	curl: Metalink download sends credentials 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22923 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
curl	CVE-2021-22924	中危	7.61.1-18.el8	7.61.1-18.el8_4.1	curl: Bad connection reuse due to flawed path name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22924 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
expat	CVE-2021-45960	中危	2.2.5-4.el8	2.2.5-4.el8_5.3	expat: Large number of prefixed XML attributes on a single tag can crash libexpat 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45960 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-01-01 19:15 修改: 2022-10-06 19:08
expat	CVE-2021-46143	中危	2.2.5-4.el8	2.2.5-4.el8_5.3	expat: Integer overflow in doProlog in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46143 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-01-06 04:15 修改: 2022-10-06 19:11
expat	CVE-2022-22822	中危	2.2.5-4.el8	2.2.5-4.el8_5.3	expat: Integer overflow in addBinding in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22822 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-01-10 14:12 修改: 2022-10-06 15:29
expat	CVE-2022-22823	中危	2.2.5-4.el8	2.2.5-4.el8_5.3	expat: Integer overflow in build_model in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22823 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-01-10 14:12 修改: 2022-10-06 14:47
expat	CVE-2022-22824	中危	2.2.5-4.el8	2.2.5-4.el8_5.3	expat: Integer overflow in defineAttribute in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22824 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-01-10 14:12 修改: 2022-10-06 14:47
expat	CVE-2022-22825	中危	2.2.5-4.el8	2.2.5-4.el8_5.3	expat: Integer overflow in lookup in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22825 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-01-10 14:12 修改: 2022-10-06 14:47
expat	CVE-2022-22826	中危	2.2.5-4.el8	2.2.5-4.el8_5.3	expat: Integer overflow in nextScaffoldPart in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22826 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-01-10 14:12 修改: 2022-10-06 12:44
expat	CVE-2022-22827	中危	2.2.5-4.el8	2.2.5-4.el8_5.3	expat: Integer overflow in storeAtts in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22827 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-01-10 14:12 修改: 2022-10-06 12:52
expat	CVE-2022-23852	中危	2.2.5-4.el8	2.2.5-4.el8_5.3	expat: Integer overflow in function XML_GetBuffer 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23852 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-01-24 02:15 修改: 2022-10-29 02:44
expat	CVE-2022-23990	中危	2.2.5-4.el8		expat: integer overflow in the doProlog function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23990 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-01-26 19:15 修改: 2023-11-07 03:44
expat	CVE-2022-25313	中危	2.2.5-4.el8	2.2.5-8.el8_6.2	expat: Stack exhaustion in doctype parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25313 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-02-18 05:15 修改: 2023-11-07 03:44
expat	CVE-2022-25314	中危	2.2.5-4.el8	2.2.5-8.el8_6.2	expat: Integer overflow in copyString() 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25314 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-02-18 05:15 修改: 2023-11-07 03:44
expat	CVE-2022-43680	中危	2.2.5-4.el8	2.2.5-10.el8_7.1	expat: use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43680 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-10-24 14:15 修改: 2024-01-21 02:08
expat	CVE-2023-52425	中危	2.2.5-4.el8	2.2.5-11.el8_9.1	expat: parsing large tokens can trigger a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52425 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-02-04 20:15 修改: 2024-08-26 20:35
expat	CVE-2024-45490	中危	2.2.5-4.el8	2.2.5-15.el8_10	libexpat: Negative Length Parsing Vulnerability in libexpat 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45490 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-08-30 03:15 修改: 2024-10-18 12:24
expat	CVE-2024-45491	中危	2.2.5-4.el8	2.2.5-15.el8_10	libexpat: Integer Overflow or Wraparound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45491 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
expat	CVE-2024-45492	中危	2.2.5-4.el8	2.2.5-15.el8_10	libexpat: integer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45492 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
file-libs	CVE-2019-18218	中危	5.33-16.el8_3.1	5.33-20.el8	file: heap-based buffer overflow in cdf_read_property_info in cdf.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18218 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2019-10-21 05:15 修改: 2023-11-07 03:06
glib2	CVE-2021-27218	中危	2.56.4-10.el8_4	2.56.4-10.el8_4.1	glib: integer overflow in g_byte_array_new_take function when called with a buffer of 4GB or more on a 64-bit platform 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27218 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-02-15 17:15 修改: 2023-11-07 03:31
glib2	CVE-2021-3800	中危	2.56.4-10.el8_4	2.56.4-156.el8	glib2: Possible privilege escalation thourgh pkexec and aliases 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3800 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-23 16:15 修改: 2023-04-25 15:42
glib2	CVE-2022-22624	中危	2.56.4-10.el8_4	2.56.4-159.el8	webkitgtk: Use-after-free leading to arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22624 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-09-23 19:15 修改: 2022-09-28 12:03
glib2	CVE-2022-22628	中危	2.56.4-10.el8_4	2.56.4-159.el8	webkitgtk: Use-after-free leading to arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22628 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-09-23 19:15 修改: 2022-09-28 12:06
glib2	CVE-2022-22629	中危	2.56.4-10.el8_4	2.56.4-159.el8	webkitgtk: Buffer overflow leading to arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22629 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-09-23 20:15 修改: 2022-09-27 04:48
glib2	CVE-2022-22662	中危	2.56.4-10.el8_4	2.56.4-159.el8	漏洞详情: 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2	CVE-2022-26700	中危	2.56.4-10.el8_4	2.56.4-159.el8	漏洞详情: 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2	CVE-2022-26709	中危	2.56.4-10.el8_4	2.56.4-159.el8	漏洞详情: 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2	CVE-2022-26710	中危	2.56.4-10.el8_4	2.56.4-159.el8	漏洞详情: 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2	CVE-2022-26716	中危	2.56.4-10.el8_4	2.56.4-159.el8	漏洞详情: 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2	CVE-2022-26717	中危	2.56.4-10.el8_4	2.56.4-159.el8	漏洞详情: 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2	CVE-2022-26719	中危	2.56.4-10.el8_4	2.56.4-159.el8	漏洞详情: 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2	CVE-2022-30293	中危	2.56.4-10.el8_4	2.56.4-159.el8	漏洞详情: 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2	CVE-2022-32792	中危	2.56.4-10.el8_4	2.56.4-159.el8	漏洞详情: 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2	CVE-2022-32816	中危	2.56.4-10.el8_4	2.56.4-159.el8	漏洞详情: 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2	CVE-2022-32891	中危	2.56.4-10.el8_4	2.56.4-159.el8	webkitgtk: UI spoofing while Visiting a website that frames malicious content 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32891 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-02-27 20:15 修改: 2023-05-30 06:15
glib2	CVE-2024-34397	中危	2.56.4-10.el8_4		glib2: Signal subscription vulnerabilities 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34397 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-07 18:15 修改: 2024-06-10 18:15
curl	CVE-2021-22946	中危	7.61.1-18.el8	7.61.1-18.el8_4.2	curl: Requirement to use TLS not properly enforced for IMAP, POP3, and FTP protocols 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22946 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:12
curl	CVE-2021-22947	中危	7.61.1-18.el8	7.61.1-18.el8_4.2	curl: Server responses received before STARTTLS processed after TLS handshake 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22947 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:03
curl	CVE-2022-22576	中危	7.61.1-18.el8	7.61.1-22.el8_6.3	curl: OAUTH2 bearer bypass in connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22576 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-05-26 17:15 修改: 2024-03-27 15:02
glibc	CVE-2021-35942	中危	2.28-151.el8	2.28-164.el8	glibc: Arbitrary read in wordexp() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35942 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-07-22 18:15 修改: 2023-11-07 03:36
glibc	CVE-2021-3999	中危	2.28-151.el8	2.28-164.el8_5.3	glibc: Off-by-one buffer overflow/underflow in getcwd() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3999 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-24 16:15 修改: 2023-02-12 23:43
glibc	CVE-2022-23218	中危	2.28-151.el8	2.28-164.el8_5.3	glibc: Stack-based buffer overflow in svcunix_create via long pathnames 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23218 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:37
glibc	CVE-2022-23219	中危	2.28-151.el8	2.28-164.el8_5.3	glibc: Stack-based buffer overflow in sunrpc clnt_create via a long pathname 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23219 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:32
glibc	CVE-2023-4527	中危	2.28-151.el8	2.28-225.el8_8.6	glibc: Stack read overflow in getaddrinfo in no-aaaa mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc	CVE-2023-4806	中危	2.28-151.el8	2.28-225.el8_8.6	glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc	CVE-2023-4813	中危	2.28-151.el8	2.28-225.el8_8.6	glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
glibc	CVE-2024-33600	中危	2.28-151.el8	2.28-251.el8_10.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
curl	CVE-2022-27774	中危	7.61.1-18.el8	7.61.1-22.el8_6.3	curl: credential leak on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27774 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
curl	CVE-2022-27776	中危	7.61.1-18.el8	7.61.1-22.el8_6.3	curl: auth/cookie leak on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27776 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
curl	CVE-2022-27782	中危	7.61.1-18.el8	7.61.1-22.el8_6.3	curl: TLS and SSH connection too eager reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27782 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
glibc-common	CVE-2021-35942	中危	2.28-151.el8	2.28-164.el8	glibc: Arbitrary read in wordexp() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35942 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-07-22 18:15 修改: 2023-11-07 03:36
glibc-common	CVE-2021-3999	中危	2.28-151.el8	2.28-164.el8_5.3	glibc: Off-by-one buffer overflow/underflow in getcwd() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3999 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-24 16:15 修改: 2023-02-12 23:43
glibc-common	CVE-2022-23218	中危	2.28-151.el8	2.28-164.el8_5.3	glibc: Stack-based buffer overflow in svcunix_create via long pathnames 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23218 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:37
glibc-common	CVE-2022-23219	中危	2.28-151.el8	2.28-164.el8_5.3	glibc: Stack-based buffer overflow in sunrpc clnt_create via a long pathname 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23219 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:32
glibc-common	CVE-2023-4527	中危	2.28-151.el8	2.28-225.el8_8.6	glibc: Stack read overflow in getaddrinfo in no-aaaa mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-common	CVE-2023-4806	中危	2.28-151.el8	2.28-225.el8_8.6	glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-common	CVE-2023-4813	中危	2.28-151.el8	2.28-225.el8_8.6	glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
glibc-common	CVE-2024-33600	中危	2.28-151.el8	2.28-251.el8_10.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
curl	CVE-2022-32206	中危	7.61.1-18.el8	7.61.1-22.el8_6.4	curl: HTTP compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32206 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
curl	CVE-2022-32208	中危	7.61.1-18.el8	7.61.1-22.el8_6.4	curl: FTP-KRB bad message verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32208 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
curl	CVE-2023-23916	中危	7.61.1-18.el8	7.61.1-25.el8_7.3	curl: HTTP multi-header compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54
glibc-langpack-en	CVE-2021-35942	中危	2.28-151.el8	2.28-164.el8	glibc: Arbitrary read in wordexp() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35942 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-07-22 18:15 修改: 2023-11-07 03:36
glibc-langpack-en	CVE-2021-3999	中危	2.28-151.el8	2.28-164.el8_5.3	glibc: Off-by-one buffer overflow/underflow in getcwd() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3999 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-24 16:15 修改: 2023-02-12 23:43
glibc-langpack-en	CVE-2022-23218	中危	2.28-151.el8	2.28-164.el8_5.3	glibc: Stack-based buffer overflow in svcunix_create via long pathnames 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23218 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:37
glibc-langpack-en	CVE-2022-23219	中危	2.28-151.el8	2.28-164.el8_5.3	glibc: Stack-based buffer overflow in sunrpc clnt_create via a long pathname 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23219 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:32
glibc-langpack-en	CVE-2023-4527	中危	2.28-151.el8	2.28-225.el8_8.6	glibc: Stack read overflow in getaddrinfo in no-aaaa mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-langpack-en	CVE-2023-4806	中危	2.28-151.el8	2.28-225.el8_8.6	glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-langpack-en	CVE-2023-4813	中危	2.28-151.el8	2.28-225.el8_8.6	glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
glibc-langpack-en	CVE-2024-33600	中危	2.28-151.el8	2.28-251.el8_10.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
curl	CVE-2023-27535	中危	7.61.1-18.el8	7.61.1-30.el8_8.2	curl: FTP too eager connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47
curl	CVE-2023-27536	中危	7.61.1-18.el8	7.61.1-30.el8_8.3	curl: GSS delegation too eager connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
curl	CVE-2023-28321	中危	7.61.1-18.el8	7.61.1-30.el8_8.3	curl: IDN wildcard match may lead to Improper Cerificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-05-26 21:15 修改: 2023-11-07 04:10
glibc-minimal-langpack	CVE-2021-35942	中危	2.28-151.el8	2.28-164.el8	glibc: Arbitrary read in wordexp() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35942 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-07-22 18:15 修改: 2023-11-07 03:36
glibc-minimal-langpack	CVE-2021-3999	中危	2.28-151.el8	2.28-164.el8_5.3	glibc: Off-by-one buffer overflow/underflow in getcwd() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3999 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-24 16:15 修改: 2023-02-12 23:43
glibc-minimal-langpack	CVE-2022-23218	中危	2.28-151.el8	2.28-164.el8_5.3	glibc: Stack-based buffer overflow in svcunix_create via long pathnames 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23218 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:37
glibc-minimal-langpack	CVE-2022-23219	中危	2.28-151.el8	2.28-164.el8_5.3	glibc: Stack-based buffer overflow in sunrpc clnt_create via a long pathname 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23219 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:32
glibc-minimal-langpack	CVE-2023-4527	中危	2.28-151.el8	2.28-225.el8_8.6	glibc: Stack read overflow in getaddrinfo in no-aaaa mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-minimal-langpack	CVE-2023-4806	中危	2.28-151.el8	2.28-225.el8_8.6	glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-minimal-langpack	CVE-2023-4813	中危	2.28-151.el8	2.28-225.el8_8.6	glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
glibc-minimal-langpack	CVE-2024-33600	中危	2.28-151.el8	2.28-251.el8_10.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
gmp	CVE-2021-43618	中危	1:6.1.2-10.el8	1:6.1.2-11.el8	gmp: Integer overflow and resultant buffer overflow via crafted input 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43618 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-11-15 04:15 修改: 2023-09-29 15:15
gnupg2	CVE-2022-34903	中危	2.2.20-2.el8	2.2.20-3.el8_6	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
gnutls	CVE-2021-20231	中危	3.6.14-8.el8_3	3.6.16-4.el8	gnutls: Use after free in client key_share extension 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20231 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-03-12 19:15 修改: 2023-11-07 03:29
gnutls	CVE-2021-20232	中危	3.6.14-8.el8_3	3.6.16-4.el8	gnutls: Use after free in client_send_params in lib/ext/pre_shared_key.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20232 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-03-12 19:15 修改: 2023-11-07 03:29
gnutls	CVE-2021-3580	中危	3.6.14-8.el8_3	3.6.16-4.el8	nettle: Remote crash in RSA decryption via manipulated ciphertext 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3580 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-08-05 21:15 修改: 2024-01-16 15:15
gnutls	CVE-2022-2509	中危	3.6.14-8.el8_3	3.6.16-5.el8_6	gnutls: Double free during gnutls_pkcs7_verify 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2509 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-08-01 14:15 修改: 2023-11-07 03:46
gnutls	CVE-2023-0361	中危	3.6.14-8.el8_3	3.6.16-6.el8_7	gnutls: timing side-channel in the TLS RSA key exchange code 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0361 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-02-15 18:15 修改: 2023-11-07 04:00
gnutls	CVE-2023-5981	中危	3.6.14-8.el8_3	3.6.16-8.el8_9	gnutls: timing side-channel in the RSA-PSK authentication 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5981 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-11-28 12:15 修改: 2024-09-16 13:15
gnutls	CVE-2024-0553	中危	3.6.14-8.el8_3	3.6.16-8.el8_9.1	gnutls: incomplete fix for CVE-2023-5981 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0553 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-01-16 12:15 修改: 2024-09-16 13:15
gnutls	CVE-2024-28834	中危	3.6.14-8.el8_3	3.6.16-8.el8_9.3	gnutls: vulnerable to Minerva side-channel information leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28834 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-03-21 14:15 修改: 2024-09-12 20:15
curl	CVE-2023-46218	中危	7.61.1-18.el8	7.61.1-33.el8_9.5	curl: information disclosure by exploiting a mixed case flaw 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
json-c	CVE-2020-12762	中危	0.13.1-0.4.el8	0.13.1-2.el8	libfastjson: integer overflow and out-of-bounds write via a large JSON file 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12762 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2020-05-09 18:15 修改: 2023-11-07 03:15
curl	CVE-2024-2398	中危	7.61.1-18.el8	7.61.1-34.el8_10.2	curl: HTTP/2 push headers memory-leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
krb5-libs	CVE-2020-17049	中危	1.18.2-8.el8		Kerberos: delegation constrain bypass in S4U2Proxy 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-17049 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2020-11-11 07:15 修改: 2024-09-10 16:15
krb5-libs	CVE-2021-36222	中危	1.18.2-8.el8	1.18.2-8.3.el8_4	krb5: Sending a request containing PA-ENCRYPTED-CHALLENGE padata element without using FAST could result in NULL dereference in KDC which leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36222 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-07-22 18:15 修改: 2021-11-28 23:19
krb5-libs	CVE-2021-37750	中危	1.18.2-8.el8	1.18.2-8.3.el8_4	krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37750 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-08-23 05:15 修改: 2023-11-07 03:37
krb5-libs	CVE-2023-5455	中危	1.18.2-8.el8		ipa: Invalid CSRF protection 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5455 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-01-10 13:15 修改: 2024-09-16 16:15
krb5-libs	CVE-2024-37370	中危	1.18.2-8.el8	1.18.2-29.el8_10	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
krb5-libs	CVE-2024-37371	中危	1.18.2-8.el8	1.18.2-29.el8_10	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libarchive	CVE-2021-23177	中危	3.3.3-1.el8	3.3.3-3.el8_5	libarchive: extracting a symlink with ACLs modifies ACLs of target 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23177 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-23 16:15 修改: 2022-12-03 14:16
libarchive	CVE-2021-31566	中危	3.3.3-1.el8	3.3.3-3.el8_5	libarchive: symbolic links incorrectly followed when changing modes, times, ACL and flags of a file while extracting an archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31566 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-23 16:15 修改: 2024-03-27 16:04
libcap	CVE-2023-2603	中危	2.26-4.el8	2.48-5.el8_8	libcap: Integer Overflow in _libcap_strdup() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2603 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-06-06 20:15 修改: 2024-10-10 16:32
libcom_err	CVE-2022-1304	中危	1.45.6-1.el8	1.45.6-5.el8	e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-04-14 21:15 修改: 2023-11-07 03:41
libcurl	CVE-2021-22876	中危	7.61.1-18.el8	7.61.1-22.el8	curl: Leak of authentication credentials in URL via automatic Referer 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22876 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-04-01 18:15 修改: 2024-03-27 15:47
libcurl	CVE-2021-22922	中危	7.61.1-18.el8	7.61.1-18.el8_4.1	curl: Content not matching hash in Metalink is not being discarded 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22922 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:12
libcurl	CVE-2021-22923	中危	7.61.1-18.el8	7.61.1-18.el8_4.1	curl: Metalink download sends credentials 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22923 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
libcurl	CVE-2021-22924	中危	7.61.1-18.el8	7.61.1-18.el8_4.1	curl: Bad connection reuse due to flawed path name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22924 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
libcurl	CVE-2021-22946	中危	7.61.1-18.el8	7.61.1-18.el8_4.2	curl: Requirement to use TLS not properly enforced for IMAP, POP3, and FTP protocols 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22946 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:12
libcurl	CVE-2021-22947	中危	7.61.1-18.el8	7.61.1-18.el8_4.2	curl: Server responses received before STARTTLS processed after TLS handshake 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22947 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:03
libcurl	CVE-2022-22576	中危	7.61.1-18.el8	7.61.1-22.el8_6.3	curl: OAUTH2 bearer bypass in connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22576 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-05-26 17:15 修改: 2024-03-27 15:02
libcurl	CVE-2022-27774	中危	7.61.1-18.el8	7.61.1-22.el8_6.3	curl: credential leak on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27774 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libcurl	CVE-2022-27776	中危	7.61.1-18.el8	7.61.1-22.el8_6.3	curl: auth/cookie leak on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27776 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libcurl	CVE-2022-27782	中危	7.61.1-18.el8	7.61.1-22.el8_6.3	curl: TLS and SSH connection too eager reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27782 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
libcurl	CVE-2022-32206	中危	7.61.1-18.el8	7.61.1-22.el8_6.4	curl: HTTP compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32206 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
libcurl	CVE-2022-32208	中危	7.61.1-18.el8	7.61.1-22.el8_6.4	curl: FTP-KRB bad message verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32208 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
libcurl	CVE-2023-23916	中危	7.61.1-18.el8	7.61.1-25.el8_7.3	curl: HTTP multi-header compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54
libcurl	CVE-2023-27535	中危	7.61.1-18.el8	7.61.1-30.el8_8.2	curl: FTP too eager connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47
libcurl	CVE-2023-27536	中危	7.61.1-18.el8	7.61.1-30.el8_8.3	curl: GSS delegation too eager connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libcurl	CVE-2023-28321	中危	7.61.1-18.el8	7.61.1-30.el8_8.3	curl: IDN wildcard match may lead to Improper Cerificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-05-26 21:15 修改: 2023-11-07 04:10
libcurl	CVE-2023-46218	中危	7.61.1-18.el8	7.61.1-33.el8_9.5	curl: information disclosure by exploiting a mixed case flaw 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
libcurl	CVE-2024-2398	中危	7.61.1-18.el8	7.61.1-34.el8_10.2	curl: HTTP/2 push headers memory-leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
libdnf	CVE-2021-3445	中危	0.55.0-7.el8	0.63.0-3.el8	libdnf: Signature verification bypass via signature placed in the main RPM header 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3445 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-05-19 14:15 修改: 2023-11-07 03:38
libgcc	CVE-2021-42574	中危	8.4.1-1.el8	8.5.0-4.el8_5	environment: Unicode's bidirectional (BiDi) override characters can cause trojan source attacks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42574 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-11-01 04:15 修改: 2024-08-04 04:16
libgcrypt	CVE-2019-12904	中危	1.8.5-4.el8		Libgcrypt: physical addresses being available to other processes leads to a flush-and-reload side-channel attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12904 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2019-06-20 00:15 修改: 2024-08-05 00:15
libgcrypt	CVE-2021-33560	中危	1.8.5-4.el8	1.8.5-6.el8	libgcrypt: mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33560 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-06-08 11:15 修改: 2023-11-07 03:35
libgcrypt	CVE-2021-40528	中危	1.8.5-4.el8	1.8.5-7.el8_6	libgcrypt: ElGamal implementation allows plaintext recovery 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-40528 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-09-06 19:15 修改: 2023-11-07 03:38
libgcrypt	CVE-2024-2236	中危	1.8.5-4.el8		libgcrypt: vulnerable to Marvin Attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-03-06 22:15 修改: 2024-09-14 04:15
cryptsetup-libs	CVE-2021-4122	中危	2.3.3-4.el8	2.3.3-4.el8_5.1	cryptsetup: disable encryption via header rewrite 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4122 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-24 16:15 修改: 2022-08-29 14:28
dbus	CVE-2022-42010	中危	1:1.12.8-12.el8_4.2	1:1.12.8-23.el8_7.1	dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42010 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus	CVE-2022-42011	中危	1:1.12.8-12.el8_4.2	1:1.12.8-23.el8_7.1	dbus: dbus-daemon can be crashed by messages with array length inconsistent with element type 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42011 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
libnghttp2	CVE-2024-28182	中危	1.33.0-3.el8_2.1	1.33.0-6.el8_10.1	nghttp2: CONTINUATION frames DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28182 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-04-04 15:15 修改: 2024-05-01 18:15
libsepol	CVE-2021-36084	中危	2.9-2.el8	2.9-3.el8	libsepol: use-after-free in __cil_verify_classperms() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36084 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol	CVE-2021-36085	中危	2.9-2.el8	2.9-3.el8	libsepol: use-after-free in __cil_verify_classperms() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36085 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol	CVE-2021-36086	中危	2.9-2.el8	2.9-3.el8	libsepol: use-after-free in cil_reset_classpermission() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36086 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol	CVE-2021-36087	中危	2.9-2.el8	2.9-3.el8	libsepol: heap-based buffer overflow in ebitmap_match_any() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36087 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsolv	CVE-2021-33928	中危	0.7.16-2.el8	0.7.16-3.el8_4	libsolv: heap-based buffer overflow in pool_installable() in src/repo.h 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33928 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-09-02 15:15 修改: 2021-09-07 21:14
libsolv	CVE-2021-33929	中危	0.7.16-2.el8	0.7.16-3.el8_4	libsolv: heap-based buffer overflow in pool_disabled_solvable() in src/repo.h 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33929 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-09-02 15:15 修改: 2021-09-07 21:14
libsolv	CVE-2021-33930	中危	0.7.16-2.el8	0.7.16-3.el8_4	libsolv: heap-based buffer overflow in pool_installable_whatprovides() in src/repo.h 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33930 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-09-02 15:15 修改: 2021-09-07 21:11
libsolv	CVE-2021-33938	中危	0.7.16-2.el8	0.7.16-3.el8_4	libsolv: heap-based buffer overflow in prune_to_recommended() in src/policy.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33938 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-09-02 15:15 修改: 2021-09-07 21:11
libssh	CVE-2023-1667	中危	0.9.4-2.el8	0.9.6-10.el8_8	libssh: NULL pointer dereference during rekeying with algorithm guessing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1667 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-05-26 18:15 修改: 2023-12-22 10:15
libssh	CVE-2023-2283	中危	0.9.4-2.el8	0.9.6-10.el8_8	libssh: authorization bypass in pki_verify_data_signature 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2283 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-05-26 18:15 修改: 2024-02-01 17:15
libssh	CVE-2023-48795	中危	0.9.4-2.el8	0.9.6-13.el8_9	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-12-18 16:15 修改: 2024-05-01 18:15
libssh-config	CVE-2023-1667	中危	0.9.4-2.el8	0.9.6-10.el8_8	libssh: NULL pointer dereference during rekeying with algorithm guessing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1667 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-05-26 18:15 修改: 2023-12-22 10:15
libssh-config	CVE-2023-2283	中危	0.9.4-2.el8	0.9.6-10.el8_8	libssh: authorization bypass in pki_verify_data_signature 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2283 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-05-26 18:15 修改: 2024-02-01 17:15
libssh-config	CVE-2023-48795	中危	0.9.4-2.el8	0.9.6-13.el8_9	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-12-18 16:15 修改: 2024-05-01 18:15
libstdc++	CVE-2021-42574	中危	8.4.1-1.el8	8.5.0-4.el8_5	environment: Unicode's bidirectional (BiDi) override characters can cause trojan source attacks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42574 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-11-01 04:15 修改: 2024-08-04 04:16
libtasn1	CVE-2021-46848	中危	4.13-3.el8	4.13-4.el8_7	libtasn1: Out-of-bound access in ETYPE_OK 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46848 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-10-24 14:15 修改: 2023-11-07 03:40
libtirpc	CVE-2021-46828	中危	1.1.4-4.el8	1.1.4-6.el8	libtirpc: DoS vulnerability with lots of connections 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46828 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-07-20 06:15 修改: 2023-11-07 03:40
libxml2	CVE-2016-3709	中危	2.9.7-9.el8	2.9.7-15.el8	libxml2: Incorrect server side include parsing can lead to XSS 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-3709 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-07-28 17:15 修改: 2022-12-07 16:39
libxml2	CVE-2021-3516	中危	2.9.7-9.el8	2.9.7-9.el8_4.2	libxml2: Use-after-free in xmlEncodeEntitiesInternal() in entities.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3516 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-06-01 14:15 修改: 2023-11-07 03:38
libxml2	CVE-2021-3517	中危	2.9.7-9.el8	2.9.7-9.el8_4.2	libxml2: Heap-based buffer overflow in xmlEncodeEntitiesInternal() in entities.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3517 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-05-19 14:15 修改: 2023-11-07 03:38
libxml2	CVE-2021-3518	中危	2.9.7-9.el8	2.9.7-9.el8_4.2	libxml2: Use-after-free in xmlXIncludeDoProcess() in xinclude.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3518 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-05-18 12:15 修改: 2023-11-07 03:38
libxml2	CVE-2021-3537	中危	2.9.7-9.el8	2.9.7-9.el8_4.2	libxml2: NULL pointer dereference when post-validating mixed content parsed in recovery mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3537 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-05-14 20:15 修改: 2023-11-07 03:38
libxml2	CVE-2021-3541	中危	2.9.7-9.el8	2.9.7-9.el8_4.2	libxml2: Exponential entity expansion attack bypasses all existing protection mechanisms 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3541 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-07-09 17:15 修改: 2022-03-01 18:25
libxml2	CVE-2022-23308	中危	2.9.7-9.el8	2.9.7-12.el8_5	libxml2: Use-after-free of ID and IDREF attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23308 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-02-26 05:15 修改: 2023-11-07 03:44
libxml2	CVE-2022-29824	中危	2.9.7-9.el8	2.9.7-13.el8_6.1	libxml2: integer overflows in xmlBuf and xmlBuffer lead to out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29824 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-05-03 03:15 修改: 2023-11-07 03:46
libxml2	CVE-2022-40303	中危	2.9.7-9.el8	2.9.7-15.el8_7.1	libxml2: integer overflows with XML_PARSE_HUGE 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40303 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-11-23 00:15 修改: 2023-11-07 03:52
libxml2	CVE-2022-40304	中危	2.9.7-9.el8	2.9.7-15.el8_7.1	libxml2: dict corruption caused by entity reference cycles 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40304 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-11-23 18:15 修改: 2023-11-07 03:52
libxml2	CVE-2023-28484	中危	2.9.7-9.el8	2.9.7-16.el8_8.1	libxml2: NULL dereference in xmlSchemaFixupComplexType 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28484 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-04-24 21:15 修改: 2024-02-01 17:15
libxml2	CVE-2023-29469	中危	2.9.7-9.el8	2.9.7-16.el8_8.1	libxml2: Hashing of empty dict strings isn't deterministic 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29469 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-04-24 21:15 修改: 2023-06-01 14:15
libxml2	CVE-2023-39615	中危	2.9.7-9.el8	2.9.7-18.el8_9	libxml2: crafted xml can cause global buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39615 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-08-29 17:15 修改: 2024-08-02 19:15
libxml2	CVE-2024-25062	中危	2.9.7-9.el8	2.9.7-18.el8_10.1	libxml2: use-after-free in XMLReader 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25062 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-02-04 16:15 修改: 2024-02-13 00:40
libyaml	CVE-2024-35325	中危	0.1.7-5.el8		libyaml: double-free in yaml_event_delete in /src/libyaml/src/api.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35325 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-06-13 17:15 修改: 2024-08-28 16:15
lua-libs	CVE-2020-15945	中危	5.3.4-11.el8		lua: segmentation fault in changedline in ldebug.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15945 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2020-07-24 21:15 修改: 2023-04-20 18:39
lz4-libs	CVE-2019-17543	中危	1.8.3-2.el8		lz4: heap-based buffer overflow in LZ4_write32 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17543 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2019-10-14 02:15 修改: 2023-11-07 03:06
lz4-libs	CVE-2021-3520	中危	1.8.3-2.el8	1.8.3-3.el8_4	lz4: memory corruption due to an integer overflow bug caused by memmove argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3520 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-06-02 13:15 修改: 2024-06-06 20:25
ncurses-base	CVE-2019-17594	中危	6.1-7.20180224.el8	6.1-9.20180224.el8	ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
ncurses-base	CVE-2019-17595	中危	6.1-7.20180224.el8	6.1-9.20180224.el8	ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
ncurses-base	CVE-2023-29491	中危	6.1-7.20180224.el8	6.1-9.20180224.el8_8.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
ncurses-libs	CVE-2019-17594	中危	6.1-7.20180224.el8	6.1-9.20180224.el8	ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
ncurses-libs	CVE-2019-17595	中危	6.1-7.20180224.el8	6.1-9.20180224.el8	ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
ncurses-libs	CVE-2023-29491	中危	6.1-7.20180224.el8	6.1-9.20180224.el8_8.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
nettle	CVE-2021-20231	中危	3.4.1-4.el8_3	3.4.1-7.el8	gnutls: Use after free in client key_share extension 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20231 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-03-12 19:15 修改: 2023-11-07 03:29
nettle	CVE-2021-20232	中危	3.4.1-4.el8_3	3.4.1-7.el8	gnutls: Use after free in client_send_params in lib/ext/pre_shared_key.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20232 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-03-12 19:15 修改: 2023-11-07 03:29
nettle	CVE-2021-3580	中危	3.4.1-4.el8_3	3.4.1-7.el8	nettle: Remote crash in RSA decryption via manipulated ciphertext 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3580 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-08-05 21:15 修改: 2024-01-16 15:15
dbus	CVE-2022-42012	中危	1:1.12.8-12.el8_4.2	1:1.12.8-23.el8_7.1	dbus: `_dbus_marshal_byteswap` doesn't process fds in messages with "foreign" endianness correctly 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42012 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus	CVE-2023-34969	中危	1:1.12.8-12.el8_4.2	1:1.12.8-24.el8_8.1	dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36
openssl-libs	CVE-2021-23840	中危	1:1.1.1g-15.el8_3	1:1.1.1k-4.el8	openssl: integer overflow in CipherUpdate 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
openssl-libs	CVE-2021-23841	中危	1:1.1.1g-15.el8_3	1:1.1.1k-4.el8	openssl: NULL pointer dereference in X509_issuer_and_serial_hash() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23841 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
openssl-libs	CVE-2021-3712	中危	1:1.1.1g-15.el8_3	1:1.1.1k-5.el8_5	openssl: Read buffer overruns processing ASN.1 strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
openssl-libs	CVE-2022-1292	中危	1:1.1.1g-15.el8_3	1:1.1.1k-7.el8_6	openssl: c_rehash script allows command injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1292 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-05-03 16:15 修改: 2023-11-07 03:41
openssl-libs	CVE-2022-2068	中危	1:1.1.1g-15.el8_3	1:1.1.1k-7.el8_6	openssl: the c_rehash script allows command injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2068 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-06-21 15:15 修改: 2023-11-07 03:46
openssl-libs	CVE-2022-2097	中危	1:1.1.1g-15.el8_3	1:1.1.1k-7.el8_6	openssl: AES OCB fails to encrypt some bytes 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2097 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-07-05 11:15 修改: 2024-06-21 19:15
openssl-libs	CVE-2022-4304	中危	1:1.1.1g-15.el8_3	1:1.1.1k-9.el8_7	openssl: timing attack in RSA Decryption implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl-libs	CVE-2022-4450	中危	1:1.1.1g-15.el8_3	1:1.1.1k-9.el8_7	openssl: double free after calling PEM_read_bio_ex 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl-libs	CVE-2023-0215	中危	1:1.1.1g-15.el8_3	1:1.1.1k-9.el8_7	openssl: use-after-free following BIO_new_NDEF 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
pam	CVE-2024-10041	中危	1.3.1-14.el8		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-10-23 14:15 修改: 2024-10-23 15:12
pam	CVE-2024-22365	中危	1.3.1-14.el8	1.3.1-33.el8	pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
pcre2	CVE-2022-1586	中危	10.32-2.el8	10.32-3.el8_6	pcre2: Out-of-bounds read in compile_xclass_matchingpath in pcre2_jit_compile.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1586 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-05-16 21:15 修改: 2023-11-07 03:42
rpm	CVE-2021-20271	中危	4.14.3-13.el8	4.14.3-14.el8_4	rpm: Signature checks bypass via corrupted rpm package 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20271 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-03-26 17:15 修改: 2023-02-12 22:15
rpm	CVE-2021-3421	中危	4.14.3-13.el8	4.14.3-14.el8_4	rpm: unsigned signature header leads to string injection into an rpm database 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3421 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-05-19 14:15 修改: 2023-11-07 03:37
rpm	CVE-2021-3521	中危	4.14.3-13.el8	4.14.3-19.el8_5.2	rpm: RPM does not require subkeys to have a valid binding signature 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3521 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-22 15:15 修改: 2023-02-12 23:41
rpm	CVE-2021-35937	中危	4.14.3-13.el8	4.14.3-28.el8_9	rpm: TOCTOU race in checks for unsafe symlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:36
rpm	CVE-2021-35938	中危	4.14.3-13.el8	4.14.3-28.el8_9	rpm: races with chown/chmod/capabilities calls during installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-25 20:15 修改: 2022-11-29 18:06
rpm	CVE-2021-35939	中危	4.14.3-13.el8	4.14.3-28.el8_9	rpm: checks for unsafe symlinks are not performed for intermediary directories 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-26 16:15 修改: 2023-02-04 01:16
rpm-libs	CVE-2021-20271	中危	4.14.3-13.el8	4.14.3-14.el8_4	rpm: Signature checks bypass via corrupted rpm package 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20271 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-03-26 17:15 修改: 2023-02-12 22:15
rpm-libs	CVE-2021-3421	中危	4.14.3-13.el8	4.14.3-14.el8_4	rpm: unsigned signature header leads to string injection into an rpm database 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3421 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-05-19 14:15 修改: 2023-11-07 03:37
rpm-libs	CVE-2021-3521	中危	4.14.3-13.el8	4.14.3-19.el8_5.2	rpm: RPM does not require subkeys to have a valid binding signature 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3521 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-22 15:15 修改: 2023-02-12 23:41
rpm-libs	CVE-2021-35937	中危	4.14.3-13.el8	4.14.3-28.el8_9	rpm: TOCTOU race in checks for unsafe symlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:36
rpm-libs	CVE-2021-35938	中危	4.14.3-13.el8	4.14.3-28.el8_9	rpm: races with chown/chmod/capabilities calls during installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-25 20:15 修改: 2022-11-29 18:06
rpm-libs	CVE-2021-35939	中危	4.14.3-13.el8	4.14.3-28.el8_9	rpm: checks for unsafe symlinks are not performed for intermediary directories 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-26 16:15 修改: 2023-02-04 01:16
sqlite-libs	CVE-2019-13750	中危	3.26.0-13.el8	3.26.0-15.el8	sqlite: dropping of shadow tables not restricted in defensive mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13750 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-12-10 22:15 修改: 2023-11-07 03:04
sqlite-libs	CVE-2019-13751	中危	3.26.0-13.el8	3.26.0-15.el8	sqlite: fts3: improve detection of corrupted records 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13751 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-12-10 22:15 修改: 2023-11-07 03:04
sqlite-libs	CVE-2019-19603	中危	3.26.0-13.el8	3.26.0-15.el8	sqlite: mishandling of certain SELECT statements with non-existent VIEW can lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19603 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-12-09 19:15 修改: 2023-11-07 03:07
sqlite-libs	CVE-2019-5827	中危	3.26.0-13.el8	3.26.0-15.el8	sqlite: out-of-bounds access due to the use of 32-bit memory allocator interfaces 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5827 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-06-27 17:15 修改: 2023-11-07 03:12
sqlite-libs	CVE-2020-13435	中危	3.26.0-13.el8	3.26.0-15.el8	sqlite: NULL pointer dereference in sqlite3ExprCodeTarget() 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13435 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2020-05-24 22:15 修改: 2023-11-07 03:16
sqlite-libs	CVE-2020-24736	中危	3.26.0-13.el8	3.26.0-18.el8_8	sqlite: Crash due to misuse of window functions. 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24736 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-04-11 18:15 修改: 2023-05-26 20:15
sqlite-libs	CVE-2020-35527	中危	3.26.0-13.el8	3.26.0-16.el8_6	sqlite: Out of bounds access during table rename 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35527 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-09-01 18:15 修改: 2022-12-08 22:29
sqlite-libs	CVE-2022-35737	中危	3.26.0-13.el8	3.26.0-17.el8_7	sqlite: an array-bounds overflow if billions of bytes are used in a string argument to a C API 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35737 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-03 06:15 修改: 2024-03-27 16:05
sqlite-libs	CVE-2023-7104	中危	3.26.0-13.el8	3.26.0-19.el8_9	sqlite: heap-buffer-overflow at sessionfuzz 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7104 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-12-29 10:15 修改: 2024-05-17 02:34
dbus-common	CVE-2022-42010	中危	1:1.12.8-12.el8_4.2	1:1.12.8-23.el8_7.1	dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42010 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus-common	CVE-2022-42011	中危	1:1.12.8-12.el8_4.2	1:1.12.8-23.el8_7.1	dbus: dbus-daemon can be crashed by messages with array length inconsistent with element type 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42011 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
systemd	CVE-2018-20839	中危	239-45.el8		systemd: mishandling of the current keyboard mode check leading to passwords being disclosed in cleartext to attacker 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20839 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-05-17 04:29 修改: 2024-10-24 17:34
systemd	CVE-2022-3821	中危	239-45.el8	239-68.el8_7.1	systemd: buffer overrun in format_timespan() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3821 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-11-08 22:15 修改: 2023-11-07 03:51
systemd	CVE-2022-4415	中危	239-45.el8	239-68.el8_7.4	systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4415 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-01-11 15:15 修改: 2023-02-02 16:19
systemd	CVE-2023-26604	中危	239-45.el8	239-74.el8_8.2	systemd: privilege escalation via the less pager 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09
systemd	CVE-2023-7008	中危	239-45.el8	239-82.el8	systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-12-23 13:15 修改: 2024-09-16 17:16
dbus-common	CVE-2022-42012	中危	1:1.12.8-12.el8_4.2	1:1.12.8-23.el8_7.1	dbus: `_dbus_marshal_byteswap` doesn't process fds in messages with "foreign" endianness correctly 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42012 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus-common	CVE-2023-34969	中危	1:1.12.8-12.el8_4.2	1:1.12.8-24.el8_8.1	dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36
systemd-libs	CVE-2018-20839	中危	239-45.el8		systemd: mishandling of the current keyboard mode check leading to passwords being disclosed in cleartext to attacker 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20839 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-05-17 04:29 修改: 2024-10-24 17:34
systemd-libs	CVE-2022-3821	中危	239-45.el8	239-68.el8_7.1	systemd: buffer overrun in format_timespan() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3821 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-11-08 22:15 修改: 2023-11-07 03:51
systemd-libs	CVE-2022-4415	中危	239-45.el8	239-68.el8_7.4	systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4415 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-01-11 15:15 修改: 2023-02-02 16:19
systemd-libs	CVE-2023-26604	中危	239-45.el8	239-74.el8_8.2	systemd: privilege escalation via the less pager 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09
systemd-libs	CVE-2023-7008	中危	239-45.el8	239-82.el8	systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-12-23 13:15 修改: 2024-09-16 17:16
dbus-daemon	CVE-2022-42010	中危	1:1.12.8-12.el8_4.2	1:1.12.8-23.el8_7.1	dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42010 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus-daemon	CVE-2022-42011	中危	1:1.12.8-12.el8_4.2	1:1.12.8-23.el8_7.1	dbus: dbus-daemon can be crashed by messages with array length inconsistent with element type 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42011 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
systemd-pam	CVE-2018-20839	中危	239-45.el8		systemd: mishandling of the current keyboard mode check leading to passwords being disclosed in cleartext to attacker 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20839 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-05-17 04:29 修改: 2024-10-24 17:34
systemd-pam	CVE-2022-3821	中危	239-45.el8	239-68.el8_7.1	systemd: buffer overrun in format_timespan() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3821 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-11-08 22:15 修改: 2023-11-07 03:51
systemd-pam	CVE-2022-4415	中危	239-45.el8	239-68.el8_7.4	systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4415 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-01-11 15:15 修改: 2023-02-02 16:19
systemd-pam	CVE-2023-26604	中危	239-45.el8	239-74.el8_8.2	systemd: privilege escalation via the less pager 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09
systemd-pam	CVE-2023-7008	中危	239-45.el8	239-82.el8	systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-12-23 13:15 修改: 2024-09-16 17:16
dbus-daemon	CVE-2022-42012	中危	1:1.12.8-12.el8_4.2	1:1.12.8-23.el8_7.1	dbus: `_dbus_marshal_byteswap` doesn't process fds in messages with "foreign" endianness correctly 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42012 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus-daemon	CVE-2023-34969	中危	1:1.12.8-12.el8_4.2	1:1.12.8-24.el8_8.1	dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36
zlib	CVE-2022-37434	中危	1.2.11-17.el8	1.2.11-19.el8_6	zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37434 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-05 07:15 修改: 2023-07-19 00:56
file-libs	CVE-2019-8905	低危	5.33-16.el8_3.1		file: stack-based buffer over-read in do_core_note in readelf.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8905 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2019-02-18 17:29 修改: 2021-12-09 19:38
file-libs	CVE-2019-8906	低危	5.33-16.el8_3.1		file: out-of-bounds read in do_core_note in readelf.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8906 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2019-02-18 17:29 修改: 2021-12-09 19:44
glibc-langpack-en	CVE-2021-27645	低危	2.28-151.el8	2.28-164.el8	glibc: Use-after-free in addgetnetgrentX function in netgroupcache.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27645 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-02-24 15:15 修改: 2023-11-07 03:31
glibc-langpack-en	CVE-2021-33574	低危	2.28-151.el8	2.28-164.el8	glibc: mq_notify does not handle separately allocated thread attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33574 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-05-25 22:15 修改: 2023-11-07 03:35
glibc-langpack-en	CVE-2024-33601	低危	2.28-151.el8	2.28-251.el8_10.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-langpack-en	CVE-2024-33602	低危	2.28-151.el8	2.28-251.el8_10.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libxml2	CVE-2023-45322	低危	2.9.7-9.el8		libxml2: use-after-free in xmlUnlinkNode() in tree.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45322 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-10-06 22:15 修改: 2024-08-02 21:15
libxml2	CVE-2024-34459	低危	2.9.7-9.el8		libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34459 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-14 15:39 修改: 2024-08-22 18:35
gawk	CVE-2023-4156	低危	4.2.1-2.el8		gawk: heap out of bound read in builtin.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4156 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-25 18:15 修改: 2023-11-07 04:22
libzstd	CVE-2021-24032	低危	1.4.4-1.el8		zstd: Race condition allows attacker to access world-readable destination file 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-24032 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-03-04 21:15 修改: 2021-04-28 20:04
libzstd	CVE-2022-4899	低危	1.4.4-1.el8		zstd: mysql: buffer overrun in util.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4899 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-03-31 20:15 修改: 2023-11-07 03:59
curl	CVE-2021-22925	低危	7.61.1-18.el8	7.61.1-22.el8	curl: Incorrect fix for CVE-2021-22898 TELNET stack contents disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22925 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
lua-libs	CVE-2020-24370	低危	5.3.4-11.el8	5.3.4-12.el8	lua: segmentation fault in getlocal and setlocal functions in ldebug.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24370 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2020-08-17 17:15 修改: 2024-09-09 13:54
dbus-daemon	CVE-2020-35512	低危	1:1.12.8-12.el8_4.2		dbus: users with the same numeric UID could lead to use-after-free and undefined behaviour 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35512 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-02-15 17:15 修改: 2023-12-27 16:36
curl	CVE-2022-35252	低危	7.61.1-18.el8	7.61.1-30.el8	curl: Incorrect handling of control code characters in cookies 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35252 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-09-23 14:15 修改: 2024-03-27 15:00
dbus	CVE-2020-35512	低危	1:1.12.8-12.el8_4.2		dbus: users with the same numeric UID could lead to use-after-free and undefined behaviour 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35512 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-02-15 17:15 修改: 2023-12-27 16:36
curl	CVE-2022-43552	低危	7.61.1-18.el8	7.61.1-30.el8	curl: Use-after-free triggered by an HTTP proxy deny response 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-02-09 20:15 修改: 2024-03-27 14:55
glibc	CVE-2021-27645	低危	2.28-151.el8	2.28-164.el8	glibc: Use-after-free in addgetnetgrentX function in netgroupcache.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27645 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-02-24 15:15 修改: 2023-11-07 03:31
ncurses-base	CVE-2018-19211	低危	6.1-7.20180224.el8		ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
ncurses-base	CVE-2018-19217	低危	6.1-7.20180224.el8		ncurses: Null pointer dereference at function _nc_name_match 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19217 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2018-11-12 19:29 修改: 2024-08-05 12:15
ncurses-base	CVE-2020-19185	低危	6.1-7.20180224.el8		ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19185 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-base	CVE-2020-19186	低危	6.1-7.20180224.el8		ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19186 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-base	CVE-2020-19187	低危	6.1-7.20180224.el8		ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19187 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-base	CVE-2020-19188	低危	6.1-7.20180224.el8		ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19188 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-base	CVE-2020-19189	低危	6.1-7.20180224.el8		ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-base	CVE-2020-19190	低危	6.1-7.20180224.el8		ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19190 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-base	CVE-2021-39537	低危	6.1-7.20180224.el8		ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
ncurses-base	CVE-2023-45918	低危	6.1-7.20180224.el8		ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-02-16 22:15 修改: 2024-03-15 11:15
ncurses-base	CVE-2023-50495	低危	6.1-7.20180224.el8		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
glibc	CVE-2021-33574	低危	2.28-151.el8	2.28-164.el8	glibc: mq_notify does not handle separately allocated thread attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33574 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-05-25 22:15 修改: 2023-11-07 03:35
glibc	CVE-2024-33601	低危	2.28-151.el8	2.28-251.el8_10.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc	CVE-2024-33602	低危	2.28-151.el8	2.28-251.el8_10.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
ncurses-libs	CVE-2018-19211	低危	6.1-7.20180224.el8		ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
ncurses-libs	CVE-2018-19217	低危	6.1-7.20180224.el8		ncurses: Null pointer dereference at function _nc_name_match 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19217 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2018-11-12 19:29 修改: 2024-08-05 12:15
ncurses-libs	CVE-2020-19185	低危	6.1-7.20180224.el8		ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19185 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-libs	CVE-2020-19186	低危	6.1-7.20180224.el8		ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19186 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-libs	CVE-2020-19187	低危	6.1-7.20180224.el8		ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19187 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-libs	CVE-2020-19188	低危	6.1-7.20180224.el8		ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19188 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-libs	CVE-2020-19189	低危	6.1-7.20180224.el8		ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-libs	CVE-2020-19190	低危	6.1-7.20180224.el8		ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19190 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-libs	CVE-2021-39537	低危	6.1-7.20180224.el8		ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
ncurses-libs	CVE-2023-45918	低危	6.1-7.20180224.el8		ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-02-16 22:15 修改: 2024-03-15 11:15
ncurses-libs	CVE-2023-50495	低危	6.1-7.20180224.el8		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
curl	CVE-2023-27534	低危	7.61.1-18.el8		curl: SFTP path ~ resolving discrepancy 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
glibc-minimal-langpack	CVE-2021-27645	低危	2.28-151.el8	2.28-164.el8	glibc: Use-after-free in addgetnetgrentX function in netgroupcache.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27645 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-02-24 15:15 修改: 2023-11-07 03:31
libcurl	CVE-2021-22898	低危	7.61.1-18.el8	7.61.1-22.el8	curl: TELNET stack contents disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22898 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:47
openldap	CVE-2023-2953	低危	2.4.46-16.el8	2.4.46-19.el8_10	openldap: null pointer dereference in ber_memalloc_x function 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-05-30 22:15 修改: 2023-08-02 16:46
libcurl	CVE-2021-22925	低危	7.61.1-18.el8	7.61.1-22.el8	curl: Incorrect fix for CVE-2021-22898 TELNET stack contents disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22925 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
libcurl	CVE-2022-35252	低危	7.61.1-18.el8	7.61.1-30.el8	curl: Incorrect handling of control code characters in cookies 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35252 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-09-23 14:15 修改: 2024-03-27 15:00
libcurl	CVE-2022-43552	低危	7.61.1-18.el8	7.61.1-30.el8	curl: Use-after-free triggered by an HTTP proxy deny response 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-02-09 20:15 修改: 2024-03-27 14:55
libcurl	CVE-2023-27534	低危	7.61.1-18.el8		curl: SFTP path ~ resolving discrepancy 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
libcurl	CVE-2023-28322	低危	7.61.1-18.el8	7.61.1-33.el8_9.5	curl: more POST-after-PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15
libcurl	CVE-2023-38546	低危	7.61.1-18.el8	7.61.1-33.el8_9.5	curl: cookie injection with none file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15
glibc-minimal-langpack	CVE-2021-33574	低危	2.28-151.el8	2.28-164.el8	glibc: mq_notify does not handle separately allocated thread attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33574 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-05-25 22:15 修改: 2023-11-07 03:35
glibc-minimal-langpack	CVE-2024-33601	低危	2.28-151.el8	2.28-251.el8_10.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libgcc	CVE-2018-20657	低危	8.4.1-1.el8		libiberty: Memory leak in demangle_template function resulting in a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15
libgcc	CVE-2018-20673	低危	8.4.1-1.el8	8.5.0-3.el8	libiberty: Integer overflow in demangle_template() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20673 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-01-04 18:29 修改: 2020-08-24 17:37
libgcc	CVE-2019-14250	低危	8.4.1-1.el8		binutils: integer overflow in simple-object-elf.c leads to a heap-based buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14250 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-07-24 04:15 修改: 2023-03-01 18:01
openssl-libs	CVE-2023-0464	低危	1:1.1.1g-15.el8_3		openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
openssl-libs	CVE-2023-0465	低危	1:1.1.1g-15.el8_3		openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
openssl-libs	CVE-2023-0466	低危	1:1.1.1g-15.el8_3		openssl: Certificate policy check not enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0466 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
openssl-libs	CVE-2023-2650	低危	1:1.1.1g-15.el8_3		openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
openssl-libs	CVE-2023-3446	低危	1:1.1.1g-15.el8_3	1:1.1.1k-12.el8_9	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15
openssl-libs	CVE-2023-3817	低危	1:1.1.1g-15.el8_3	1:1.1.1k-12.el8_9	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15
openssl-libs	CVE-2023-5678	低危	1:1.1.1g-15.el8_3	1:1.1.1k-12.el8_9	openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
openssl-libs	CVE-2024-0727	低危	1:1.1.1g-15.el8_3		openssl: denial of service via null dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-01-26 09:15 修改: 2024-10-14 15:15
openssl-libs	CVE-2024-2511	低危	1:1.1.1g-15.el8_3		openssl: Unbounded memory growth with session handling in TLSv1.3 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-04-08 14:15 修改: 2024-10-14 15:15
openssl-libs	CVE-2024-41996	低危	1:1.1.1g-15.el8_3		openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
openssl-libs	CVE-2024-4741	低危	1:1.1.1g-15.el8_3		openssl: Use After Free with SSL_free_buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
openssl-libs	CVE-2024-5535	低危	1:1.1.1g-15.el8_3	1:1.1.1k-14.el8_6	openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
libgcc	CVE-2022-27943	低危	8.4.1-1.el8		binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
glibc-minimal-langpack	CVE-2024-33602	低危	2.28-151.el8	2.28-251.el8_10.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
pcre	CVE-2019-20838	低危	8.42-4.el8	8.42-6.el8	pcre: Buffer over-read in JIT when UTF is disabled and \X or \R has fixed quantifier greater than 1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20838 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2020-06-15 17:15 修改: 2024-03-27 16:05
pcre	CVE-2020-14155	低危	8.42-4.el8	8.42-6.el8	pcre: Integer overflow when parsing callout numeric arguments 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14155 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2020-06-15 17:15 修改: 2024-03-27 16:04
dbus-libs	CVE-2020-35512	低危	1:1.12.8-12.el8_4.2		dbus: users with the same numeric UID could lead to use-after-free and undefined behaviour 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35512 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-02-15 17:15 修改: 2023-12-27 16:36
pcre2	CVE-2022-41409	低危	10.32-2.el8		pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-07-18 14:15 修改: 2023-07-27 03:46
curl	CVE-2023-28322	低危	7.61.1-18.el8	7.61.1-33.el8_9.5	curl: more POST-after-PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15
gnupg2	CVE-2022-3219	低危	2.2.20-2.el8		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
curl	CVE-2023-38546	低危	7.61.1-18.el8	7.61.1-33.el8_9.5	curl: cookie injection with none file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15
dbus-common	CVE-2020-35512	低危	1:1.12.8-12.el8_4.2		dbus: users with the same numeric UID could lead to use-after-free and undefined behaviour 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35512 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-02-15 17:15 修改: 2023-12-27 16:36
ca-certificates	CVE-2023-37920	低危	2020.2.41-80.0.el8_2	2024.2.69_v8.0.303-80.0.el8_10	python-certifi: Removal of e-Tugra root certificate 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37920 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-07-25 21:15 修改: 2023-08-12 06:16
dbus-tools	CVE-2020-35512	低危	1:1.12.8-12.el8_4.2		dbus: users with the same numeric UID could lead to use-after-free and undefined behaviour 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35512 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-02-15 17:15 修改: 2023-12-27 16:36
rpm	CVE-2021-20266	低危	4.14.3-13.el8	4.14.3-19.el8	rpm: missing length checks in hdrblobInit() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20266 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-04-30 12:15 修改: 2023-11-07 03:29
elfutils-default-yama-scope	CVE-2021-33294	低危	0.182-3.el8		elfutils: an infinite loop was found in the function handle_symtab in readelf.c which causes denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33294 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-07-18 14:15 修改: 2023-07-27 15:19
elfutils-default-yama-scope	CVE-2024-25260	低危	0.182-3.el8		elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-02-20 18:15 修改: 2024-08-01 13:47
elfutils-libelf	CVE-2021-33294	低危	0.182-3.el8		elfutils: an infinite loop was found in the function handle_symtab in readelf.c which causes denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33294 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-07-18 14:15 修改: 2023-07-27 15:19
elfutils-libelf	CVE-2024-25260	低危	0.182-3.el8		elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-02-20 18:15 修改: 2024-08-01 13:47
gnutls	CVE-2021-4209	低危	3.6.14-8.el8_3		GnuTLS: Null pointer dereference in MD_UPDATE 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4209 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2022-08-24 16:15 修改: 2022-10-27 16:57
glibc-common	CVE-2021-27645	低危	2.28-151.el8	2.28-164.el8	glibc: Use-after-free in addgetnetgrentX function in netgroupcache.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27645 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-02-24 15:15 修改: 2023-11-07 03:31
rpm-libs	CVE-2021-20266	低危	4.14.3-13.el8	4.14.3-19.el8	rpm: missing length checks in hdrblobInit() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20266 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-04-30 12:15 修改: 2023-11-07 03:29
shadow-utils	CVE-2023-4641	低危	2:4.6-12.el8	2:4.6-19.el8	shadow-utils: possible password leak during passwd(1) change 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
glibc-common	CVE-2021-33574	低危	2.28-151.el8	2.28-164.el8	glibc: mq_notify does not handle separately allocated thread attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33574 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-05-25 22:15 修改: 2023-11-07 03:35
glibc-common	CVE-2024-33601	低危	2.28-151.el8	2.28-251.el8_10.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libsolv	CVE-2021-3200	低危	0.7.16-2.el8	0.7.19-1.el8	libsolv: heap-based buffer overflow in testcase_read() in src/testcase.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3200 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-05-18 17:15 修改: 2022-07-30 03:45
glibc-common	CVE-2024-33602	低危	2.28-151.el8	2.28-251.el8_10.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
elfutils-libs	CVE-2021-33294	低危	0.182-3.el8		elfutils: an infinite loop was found in the function handle_symtab in readelf.c which causes denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33294 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-07-18 14:15 修改: 2023-07-27 15:19
glib2	CVE-2021-28153	低危	2.56.4-10.el8_4	2.56.4-156.el8	glib: g_file_replace() with G_FILE_CREATE_REPLACE_DESTINATION creates empty target for dangling symlink 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28153 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-03-11 22:15 修改: 2023-11-07 03:32
libssh	CVE-2020-16135	低危	0.9.4-2.el8	0.9.4-3.el8	libssh: NULL pointer dereference in sftpserver.c if ssh_buffer_new returns NULL 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16135 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2020-07-29 21:15 修改: 2023-11-07 03:18
libssh	CVE-2021-3634	低危	0.9.4-2.el8	0.9.6-3.el8	libssh: possible heap-based buffer overflow when rekeying 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3634 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-08-31 17:15 修改: 2023-12-22 10:15
libssh	CVE-2023-6004	低危	0.9.4-2.el8	0.9.6-14.el8	libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6004 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-01-03 17:15 修改: 2024-09-16 18:15
sqlite-libs	CVE-2019-19244	低危	3.26.0-13.el8		sqlite: allows a crash if a sub-select uses both DISTINCT and window functions and also has certain ORDER BY usage 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19244 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-11-25 20:15 修改: 2022-04-15 16:12
sqlite-libs	CVE-2019-9936	低危	3.26.0-13.el8		sqlite: heap-based buffer over-read in function fts5HashEntrySort in sqlite3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9936 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-03-22 08:29 修改: 2023-11-07 03:13
sqlite-libs	CVE-2019-9937	低危	3.26.0-13.el8		sqlite: null-pointer dereference in function fts5ChunkIterate in sqlite3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9937 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-03-22 08:29 修改: 2023-11-07 03:13
sqlite-libs	CVE-2020-35525	低危	3.26.0-13.el8	3.26.0-16.el8_6	sqlite: Null pointer derreference in src/select.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35525 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-09-01 18:15 修改: 2023-07-06 19:15
sqlite-libs	CVE-2023-36191	低危	3.26.0-13.el8		sqlite: CLI fault on missing -nonce 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36191 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-06-23 02:15 修改: 2023-11-07 04:16
sqlite-libs	CVE-2024-0232	低危	3.26.0-13.el8		sqlite: use-after-free bug in jsonParseAddNodeArray 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0232 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-01-16 14:15 修改: 2024-09-28 04:15
libssh	CVE-2023-6918	低危	0.9.4-2.el8	0.9.6-14.el8	libssh: Missing checks for return values for digests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6918 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-12-19 00:15 修改: 2024-09-16 18:15
glib2	CVE-2023-29499	低危	2.56.4-10.el8_4		glib: GVariant offset table entry size is not checked in is_normal() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29499 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-14 20:15 修改: 2023-11-27 14:15
glib2	CVE-2023-32611	低危	2.56.4-10.el8_4		glib: g_variant_byteswap() can take a long time with some non-normal inputs 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32611 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-14 20:15 修改: 2023-11-27 14:15
glib2	CVE-2023-32636	低危	2.56.4-10.el8_4		glib: Timeout in fuzz_variant_text 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32636 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-14 20:15 修改: 2024-01-12 22:09
libssh-config	CVE-2020-16135	低危	0.9.4-2.el8	0.9.4-3.el8	libssh: NULL pointer dereference in sftpserver.c if ssh_buffer_new returns NULL 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16135 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2020-07-29 21:15 修改: 2023-11-07 03:18
libssh-config	CVE-2021-3634	低危	0.9.4-2.el8	0.9.6-3.el8	libssh: possible heap-based buffer overflow when rekeying 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3634 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2021-08-31 17:15 修改: 2023-12-22 10:15
libssh-config	CVE-2023-6004	低危	0.9.4-2.el8	0.9.6-14.el8	libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6004 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2024-01-03 17:15 修改: 2024-09-16 18:15
systemd	CVE-2021-3997	低危	239-45.el8		systemd: Uncontrolled recursion in systemd-tmpfiles when removing files 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
libssh-config	CVE-2023-6918	低危	0.9.4-2.el8	0.9.6-14.el8	libssh: Missing checks for return values for digests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6918 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-12-19 00:15 修改: 2024-09-16 18:15
krb5-libs	CVE-2024-26458	低危	1.18.2-8.el8	1.18.2-27.el8_10	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libstdc++	CVE-2018-20657	低危	8.4.1-1.el8		libiberty: Memory leak in demangle_template function resulting in a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15
libstdc++	CVE-2018-20673	低危	8.4.1-1.el8	8.5.0-3.el8	libiberty: Integer overflow in demangle_template() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20673 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-01-04 18:29 修改: 2020-08-24 17:37
libstdc++	CVE-2019-14250	低危	8.4.1-1.el8		binutils: integer overflow in simple-object-elf.c leads to a heap-based buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14250 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2019-07-24 04:15 修改: 2023-03-01 18:01
libstdc++	CVE-2022-27943	低危	8.4.1-1.el8		binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
krb5-libs	CVE-2024-26461	低危	1.18.2-8.el8	1.18.2-27.el8_10	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
systemd-libs	CVE-2021-3997	低危	239-45.el8		systemd: Uncontrolled recursion in systemd-tmpfiles when removing files 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
libtasn1	CVE-2018-1000654	低危	4.13-3.el8		libtasn1: Infinite loop in _asn1_expand_object_id(ptree) leads to memory exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000654 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2018-08-20 19:31 修改: 2023-11-07 02:51
glib2	CVE-2023-32665	低危	2.56.4-10.el8_4		glib: GVariant deserialisation does not match spec for non-normal data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32665 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-14 20:15 修改: 2024-04-26 09:15
elfutils-libs	CVE-2024-25260	低危	0.182-3.el8		elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-02-20 18:15 修改: 2024-08-01 13:47
libarchive	CVE-2018-1000879	低危	3.3.3-1.el8		libarchive: NULL pointer dereference in ACL parser resulting in a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000879 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2018-12-20 17:29 修改: 2023-11-07 02:51
libarchive	CVE-2018-1000880	低危	3.3.3-1.el8		libarchive: Improper input validation in WARC parser resulting in a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000880 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2018-12-20 17:29 修改: 2023-11-07 02:51
libarchive	CVE-2020-21674	低危	3.3.3-1.el8		libarchive: heap-based buffer overflow in archive_string_append_from_wcs function in archive_string.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-21674 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2020-10-15 15:15 修改: 2020-10-26 15:53
libarchive	CVE-2022-36227	低危	3.3.3-1.el8	3.3.3-5.el8	libarchive: NULL pointer dereference in archive_write.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-36227 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-11-22 02:15 修改: 2024-03-27 16:04
systemd-pam	CVE-2021-3997	低危	239-45.el8		systemd: Uncontrolled recursion in systemd-tmpfiles when removing files 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
bzip2-libs	CVE-2019-12900	低危	1.0.6-26.el8		bzip2: out-of-bounds write in function BZ2_decompress 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12900 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2019-06-19 23:15 修改: 2023-11-07 03:03
libcap	CVE-2023-2602	低危	2.26-4.el8	2.48-5.el8_8	libcap: Memory Leak on pthread_create() Error 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2602 镜像层: sha256:4a2bc86056a8dfff6153b98fa9ff55b532584eb7b0d60aaf3ff7850a3df53fef 发布日期: 2023-06-06 20:15 修改: 2023-11-30 05:15
curl	CVE-2021-22898	低危	7.61.1-18.el8	7.61.1-22.el8	curl: TELNET stack contents disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22898 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:47

usr/bin/minio (gobinary)

低危漏洞:2

中危漏洞:41

高危漏洞:52

严重漏洞:5

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
github.com/nats-io/jwt	CVE-2021-3127	严重	v1.1.0		NATS Server 2.x before 2.2.0 and JWT library before 2.0.1 have Incorre ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3127 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-03-16 20:15 修改: 2022-07-12 17:42
stdlib	CVE-2022-23806	严重	1.16.5	1.16.14, 1.17.7	golang: crypto/elliptic: IsOnCurve returns true for invalid field elements 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23806 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-02-11 01:15 修改: 2023-04-20 00:15
stdlib	CVE-2023-24538	严重	1.16.5	1.19.8, 1.20.3	golang: html/template: backticks not treated as string delimiters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24538 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24540	严重	1.16.5	1.19.9, 1.20.4	golang: html/template: improper handling of JavaScript whitespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24540 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:08
stdlib	CVE-2024-24790	严重	1.16.5	1.21.11, 1.22.4	golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24790 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-06-05 16:15 修改: 2024-09-03 18:35
golang.org/x/crypto	CVE-2021-43565	高危	v0.0.0-20210421170649-83a5a9bb288b	0.0.0-20211202192323-5770296d904e	golang.org/x/crypto: empty plaintext packet causes panic 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43565 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-09-06 18:15 修改: 2023-11-07 03:39
golang.org/x/crypto	CVE-2022-27191	高危	v0.0.0-20210421170649-83a5a9bb288b	0.0.0-20220314234659-1baeb1ce4c0b	golang: crash in a golang.org/x/crypto/ssh server 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27191 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-03-18 07:15 修改: 2023-11-07 03:45
golang.org/x/net	CVE-2021-33194	高危	v0.0.0-20210421230115-4e50805a0758	0.0.0-20210520170846-37e1c6afe023	golang: x/net/html: infinite loop in ParseFragment 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33194 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-05-26 15:15 修改: 2023-11-07 03:35
golang.org/x/net	CVE-2022-27664	高危	v0.0.0-20210421230115-4e50805a0758	0.0.0-20220906165146-f3363e06e74c	golang: net/http: handle server errors after sending GOAWAY 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27664 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-09-06 18:15 修改: 2023-11-07 03:45
golang.org/x/net	CVE-2022-41723	高危	v0.0.0-20210421230115-4e50805a0758	0.7.0	golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41723 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
golang.org/x/net	CVE-2023-39325	高危	v0.0.0-20210421230115-4e50805a0758	0.17.0	golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39325 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-10-11 22:15 修改: 2024-04-28 04:15
golang.org/x/text	CVE-2021-38561	高危	v0.3.6	0.3.7	golang: out-of-bounds read in golang.org/x/text/language leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-38561 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-12-26 06:15 修改: 2023-01-05 04:52
golang.org/x/text	CVE-2022-32149	高危	v0.3.6	0.3.8	golang: golang.org/x/text/language: ParseAcceptLanguage takes a long time to parse complex tags 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32149 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-14 15:15 修改: 2022-10-18 17:41
google.golang.org/grpc	GHSA-m425-mq94-257g	高危	v1.29.1	1.56.3, 1.57.1, 1.58.3	gRPC-Go HTTP/2 Rapid Reset vulnerability 漏洞详情: https://github.com/advisories/GHSA-m425-mq94-257g 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/dgrijalva/jwt-go	CVE-2020-26160	高危	v3.2.0+incompatible		jwt-go: access restriction bypass vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26160 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2020-09-30 18:15 修改: 2021-07-21 11:39
github.com/coredns/coredns	CVE-2023-28452	高危	v1.4.0	1.11.0	CoreDNS vulnerable to TuDoor Attacks 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28452 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-09-18 15:15 修改: 2024-09-26 18:37
github.com/prometheus/client_golang	CVE-2022-21698	高危	v1.8.0	1.11.1	prometheus/client_golang: Denial of service using InstrumentHandlerCounter 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21698 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-02-15 16:15 修改: 2023-11-07 03:43
github.com/tidwall/gjson	CVE-2021-42836	高危	v1.7.5	1.9.3	GJSON before 1.9.3 allows a ReDoS (regular expression denial of servic ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42836 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-10-22 18:15 修改: 2022-05-03 16:04
stdlib	CVE-2021-39293	高危	1.16.5	1.16.8, 1.17.1	golang: archive/zip: malformed archive may cause panic or memory exhaustion (incomplete fix of CVE-2021-33196) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39293 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-01-24 01:15 修改: 2023-04-20 00:15
stdlib	CVE-2021-41771	高危	1.16.5	1.16.10, 1.17.3	golang: debug/macho: invalid dynamic symbol table command can cause panic 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-41771 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-11-08 06:15 修改: 2023-11-07 03:39
stdlib	CVE-2021-41772	高危	1.16.5	1.16.10, 1.17.3	golang: archive/zip: Reader.Open panics on empty string 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-41772 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-11-08 06:15 修改: 2023-11-07 03:39
stdlib	CVE-2021-44716	高危	1.16.5	1.16.12, 1.17.5	golang: net/http: limit growth of header canonicalization cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44716 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-01-01 05:15 修改: 2023-04-20 00:15
stdlib	CVE-2022-23772	高危	1.16.5	1.16.14, 1.17.7	golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23772 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-02-11 01:15 修改: 2022-11-09 21:51
stdlib	CVE-2022-24675	高危	1.16.5	1.17.9, 1.18.1	golang: encoding/pem: fix stack overflow in Decode 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24675 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-04-20 10:15 修改: 2023-11-07 03:44
stdlib	CVE-2022-24921	高危	1.16.5	1.16.15, 1.17.8	golang: regexp: stack exhaustion via a deeply nested expression 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24921 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-03-05 20:15 修改: 2023-08-08 14:22
stdlib	CVE-2022-27664	高危	1.16.5	1.18.6, 1.19.1	golang: net/http: handle server errors after sending GOAWAY 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27664 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-09-06 18:15 修改: 2023-11-07 03:45
stdlib	CVE-2022-28131	高危	1.16.5	1.17.12, 1.18.4	golang: encoding/xml: stack exhaustion in Decoder.Skip 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28131 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:45
stdlib	CVE-2022-28327	高危	1.16.5	1.17.9, 1.18.1	golang: crypto/elliptic: panic caused by oversized scalar 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28327 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-04-20 10:15 修改: 2023-11-07 03:45
stdlib	CVE-2022-2879	高危	1.16.5	1.18.7, 1.19.2	golang: archive/tar: unbounded memory consumption when reading headers 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2879 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-14 15:15 修改: 2023-11-25 11:15
stdlib	CVE-2022-2880	高危	1.16.5	1.18.7, 1.19.2	golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2880 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-14 15:15 修改: 2023-11-25 11:15
stdlib	CVE-2022-29804	高危	1.16.5	1.17.11, 1.18.3	ELSA-2022-17957: ol8addon security update (IMPORTANT) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29804 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:46
stdlib	CVE-2022-30580	高危	1.16.5	1.17.11, 1.18.3	golang: os/exec: Code injection in Cmd.Start 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30580 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-30630	高危	1.16.5	1.17.12, 1.18.4	golang: io/fs: stack exhaustion in Glob 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30630 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-30631	高危	1.16.5	1.17.12, 1.18.4	golang: compress/gzip: stack exhaustion in Reader.Read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30631 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-30632	高危	1.16.5	1.17.12, 1.18.4	golang: path/filepath: stack exhaustion in Glob 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30632 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-30633	高危	1.16.5	1.17.12, 1.18.4	golang: encoding/xml: stack exhaustion in Unmarshal 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30633 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-30634	高危	1.16.5	1.17.11, 1.18.3	ELSA-2022-17957: ol8addon security update (IMPORTANT) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30634 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-07-15 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-30635	高危	1.16.5	1.17.12, 1.18.4	golang: encoding/gob: stack exhaustion in Decoder.Decode 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30635 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-32189	高危	1.16.5	1.17.13, 1.18.5	golang: math/big: decoding big.Float and big.Rat types can panic if the encoded message is too short, potentially allowing a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32189 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-10 20:15 修改: 2023-03-03 15:39
stdlib	CVE-2022-41715	高危	1.16.5	1.18.7, 1.19.2	golang: regexp/syntax: limit memory used by parsing regexps 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41715 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-10-14 15:16 修改: 2023-11-25 11:15
stdlib	CVE-2022-41716	高危	1.16.5	1.18.8, 1.19.3	Due to unsanitized NUL values, attackers may be able to maliciously se ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41716 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-11-02 16:15 修改: 2023-11-07 03:52
stdlib	CVE-2022-41720	高危	1.16.5	1.18.9, 1.19.4	golang: os, net/http: avoid escapes from os.DirFS and http.Dir on Windows 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41720 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-12-07 17:15 修改: 2022-12-12 14:58
stdlib	CVE-2022-41722	高危	1.16.5	1.19.6, 1.20.1	golang: path/filepath: path-filepath filepath.Clean path traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41722 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-02-28 18:15 修改: 2023-11-07 03:52
stdlib	CVE-2022-41723	高危	1.16.5	1.19.6, 1.20.1	golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41723 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
stdlib	CVE-2022-41724	高危	1.16.5	1.19.6, 1.20.1	golang: crypto/tls: large handshake records may cause panics 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41724 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
stdlib	CVE-2022-41725	高危	1.16.5	1.19.6, 1.20.1	golang: net/http, mime/multipart: denial of service from excessive resource consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41725 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24534	高危	1.16.5	1.19.8, 1.20.3	golang: net/http, net/textproto: denial of service from excessive memory allocation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24534 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24536	高危	1.16.5	1.19.8, 1.20.3	golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24536 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24537	高危	1.16.5	1.19.8, 1.20.3	golang: go/parser: Infinite loop in parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24537 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24539	高危	1.16.5	1.19.9, 1.20.4	golang: html/template: improper sanitization of CSS values 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24539 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:08
stdlib	CVE-2023-29400	高危	1.16.5	1.19.9, 1.20.4	golang: html/template: improper handling of empty HTML attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29400 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:11
stdlib	CVE-2023-29403	高危	1.16.5	1.19.10, 1.20.5	golang: runtime: unexpected behavior of setuid/setgid binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29403 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-06-08 21:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39325	高危	1.16.5	1.20.10, 1.21.3	golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39325 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-10-11 22:15 修改: 2024-04-28 04:15
stdlib	CVE-2023-45283	高危	1.16.5	1.20.11, 1.21.4, 1.20.12, 1.21.5	The filepath package does not recognize paths with a \??\ prefix as sp ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45283 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-11-09 17:15 修改: 2023-12-14 10:15
stdlib	CVE-2023-45287	高危	1.16.5	1.20.0	golang: crypto/tls: Timing Side Channel attack in RSA based TLS key exchanges. 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45287 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-12-05 17:15 修改: 2024-01-12 14:15
stdlib	CVE-2023-45288	高危	1.16.5	1.21.9, 1.22.2	golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45288 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-04-04 21:15 修改: 2024-08-26 21:35
stdlib	CVE-2024-34156	高危	1.16.5	1.22.7, 1.23.1	encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
golang.org/x/net	CVE-2023-44487	中危	v0.0.0-20210421230115-4e50805a0758	0.17.0	HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-10-10 14:15 修改: 2024-08-14 19:57
golang.org/x/net	CVE-2023-45288	中危	v0.0.0-20210421230115-4e50805a0758	0.23.0	golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45288 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-04-04 21:15 修改: 2024-08-26 21:35
golang.org/x/sys	CVE-2022-29526	中危	v0.0.0-20210510120138-977fb7262007	0.0.0-20220412211240-33da011f77ad	golang: syscall: faccessat checks wrong group 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29526 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-06-23 17:15 修改: 2023-11-07 03:46
github.com/coredns/coredns	CVE-2024-0874	中危	v1.4.0	1.11.2	coredns: CD bit response is cached and served later 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0874 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-04-25 17:15 修改: 2024-09-11 22:15
github.com/coredns/coredns	GHSA-gv9j-4w24-q7vx	中危	v1.4.0	1.6.6	Improper random number generation in github.com/coredns/coredns 漏洞详情: https://github.com/advisories/GHSA-gv9j-4w24-q7vx 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/coredns/coredns	CVE-2022-2835	中危	v1.4.0		coreDNS: DNS Redirection of Internal Services 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2835 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-03-03 16:15 修改: 2023-03-14 15:47
google.golang.org/grpc	CVE-2023-44487	中危	v1.29.1	1.58.3, 1.57.1, 1.56.3	HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-10-10 14:15 修改: 2024-08-14 19:57
google.golang.org/protobuf	CVE-2024-24786	中危	v1.26.0	1.33.0	golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24786 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-03-05 23:15 修改: 2024-06-10 18:15
github.com/lestrrat-go/jwx	CVE-2023-49290	中危	v1.2.0	1.2.27	jwx: Malicious parameters in JWE can cause denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49290 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-12-05 00:15 修改: 2024-03-04 22:59
golang.org/x/crypto	CVE-2023-48795	中危	v0.0.0-20210421170649-83a5a9bb288b	0.17.0	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-12-18 16:15 修改: 2024-05-01 18:15
github.com/lestrrat-go/jwx	CVE-2024-21664	中危	v1.2.0	1.2.28	jwx: parsing JSON serialized payload without protected field can lead to panic 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21664 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-01-09 20:15 修改: 2024-02-05 16:15
github.com/lestrrat-go/jwx	CVE-2024-28122	中危	v1.2.0	1.2.29	jwx: denial of service attack using compressed JWE message 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28122 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-03-09 01:15 修改: 2024-03-11 01:32
github.com/lestrrat-go/jwx	GHSA-rm8v-mxj3-5rmq	中危	v1.2.0	1.2.26	github.com/lestrrat-go/jwx vulnerable to Potential Padding Oracle Attack 漏洞详情: https://github.com/advisories/GHSA-rm8v-mxj3-5rmq 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/coredns/coredns	CVE-2022-2837	中危	v1.4.0		coreDNS: DNS Redirection of Top-Level Domains 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2837 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-03-03 16:15 修改: 2023-03-14 15:32
golang.org/x/net	CVE-2021-31525	中危	v0.0.0-20210421230115-4e50805a0758	0.0.0-20210428140749-89ef3d95e781	golang: net/http: panic in ReadRequest and ReadResponse when reading a very large header 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31525 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-05-27 13:15 修改: 2023-11-07 03:34
golang.org/x/net	CVE-2022-41717	中危	v0.0.0-20210421230115-4e50805a0758	0.4.0	golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41717 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-12-08 20:15 修改: 2024-01-18 03:15
golang.org/x/net	CVE-2023-3978	中危	v0.0.0-20210421230115-4e50805a0758	0.13.0	golang.org/x/net/html: Cross site scripting 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3978 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-08-02 20:15 修改: 2023-11-07 04:20
stdlib	CVE-2021-34558	中危	1.16.5	1.15.14, 1.16.6	golang: crypto/tls: certificate of wrong type is causing TLS client to panic 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-34558 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-07-15 14:15 修改: 2023-11-07 03:36
stdlib	CVE-2021-36221	中危	1.16.5	1.15.15, 1.16.7	golang: net/http/httputil: panic due to racy read of persistConn after handler panic 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36221 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2021-08-08 06:15 修改: 2023-11-07 03:36
stdlib	CVE-2021-44717	中危	1.16.5	1.16.12, 1.17.5	golang: syscall: don't close fd 0 on ForkExec error 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44717 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-01-01 05:15 修改: 2023-08-08 14:22
stdlib	CVE-2022-1705	中危	1.16.5	1.17.12, 1.18.4	golang: net/http: improper sanitization of Transfer-Encoding header 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1705 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:42
stdlib	CVE-2022-1962	中危	1.16.5	1.17.12, 1.18.4	golang: go/parser: stack exhaustion in all Parse* functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1962 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:42
stdlib	CVE-2022-29526	中危	1.16.5	1.17.10, 1.18.2	golang: syscall: faccessat checks wrong group 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29526 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-06-23 17:15 修改: 2023-11-07 03:46
stdlib	CVE-2022-32148	中危	1.16.5	1.17.12, 1.18.4	golang: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32148 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-41717	中危	1.16.5	1.18.9, 1.19.4	golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41717 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-12-08 20:15 修改: 2024-01-18 03:15
stdlib	CVE-2023-24532	中危	1.16.5	1.19.7, 1.20.2	golang: crypto/internal/nistec: specific unreduced P-256 scalars produce incorrect results 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24532 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-03-08 20:15 修改: 2023-11-07 04:08
stdlib	CVE-2023-29406	中危	1.16.5	1.19.11, 1.20.6	golang: net/http: insufficient sanitization of Host header 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29406 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-07-11 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-29409	中危	1.16.5	1.19.12, 1.20.7, 1.21.0-rc.4	golang: crypto/tls: slow verification of certificate chains containing large RSA keys 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29409 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-08-02 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39318	中危	1.16.5	1.20.8, 1.21.1	golang: html/template: improper handling of HTML-like comments within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39318 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39319	中危	1.16.5	1.20.8, 1.21.1	golang: html/template: improper handling of special tags within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39319 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39326	中危	1.16.5	1.20.12, 1.21.5	golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39326 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-12-06 17:15 修改: 2024-01-20 04:15
stdlib	CVE-2023-45284	中危	1.16.5	1.20.11, 1.21.4	On Windows, The IsLocal function does not correctly detect reserved de ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45284 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2023-11-09 17:15 修改: 2024-09-03 19:35
stdlib	CVE-2023-45289	中危	1.16.5	1.21.8, 1.22.1	golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45289 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-03-05 23:15 修改: 2024-05-01 17:15
stdlib	CVE-2023-45290	中危	1.16.5	1.21.8, 1.22.1	golang: net/http: golang: mime/multipart: golang: net/textproto: memory exhaustion in Request.ParseMultipartForm 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45290 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-03-05 23:15 修改: 2024-05-01 17:15
stdlib	CVE-2024-24783	中危	1.16.5	1.21.8, 1.22.1	golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24783 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-03-05 23:15 修改: 2024-05-01 17:15
stdlib	CVE-2024-24784	中危	1.16.5	1.21.8, 1.22.1	golang: net/mail: comments in display names are incorrectly handled 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24784 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-03-05 23:15 修改: 2024-08-05 21:35
stdlib	CVE-2024-24785	中危	1.16.5	1.21.8, 1.22.1	golang: html/template: errors returned from MarshalJSON methods may break template escaping 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24785 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-03-05 23:15 修改: 2024-05-01 17:15
stdlib	CVE-2024-24789	中危	1.16.5	1.21.11, 1.22.4	golang: archive/zip: Incorrect handling of certain ZIP files 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24789 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-06-05 16:15 修改: 2024-07-03 01:48
stdlib	CVE-2024-24791	中危	1.16.5	1.21.12, 1.22.5	net/http: Denial of service due to improper 100-continue handling in net/http 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24791 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-07-02 22:15 修改: 2024-07-08 14:17
stdlib	CVE-2024-34155	中危	1.16.5	1.22.7, 1.23.1	go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-09-06 21:15 修改: 2024-09-09 13:03
stdlib	CVE-2024-34158	中危	1.16.5	1.22.7, 1.23.1	go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35
github.com/coredns/coredns	CVE-2023-30464	低危	v1.4.0		CoreDNS Cache Poisoning via a birthday attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-30464 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2024-09-18 21:15 修改: 2024-09-20 12:30
stdlib	CVE-2022-30629	低危	1.16.5	1.17.11, 1.18.3	golang: crypto/tls: session tickets lack random ticket_age_add 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30629 镜像层: sha256:0b0d6b8cac7055ee4c2d551b6ebf518c7809ce2bf4d8a1fd5352f5fbcb6fb999 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47