docker.io/nginx:1.19.2-alpine linux/amd64

docker.io/nginx:1.19.2-alpine - Trivy安全扫描结果 扫描时间: 2024-12-19 10:17
全部漏洞信息
低危漏洞:10 中危漏洞:32 高危漏洞:60 严重漏洞:7

系统OS: alpine 3.12.0 扫描引擎: Trivy 扫描时间: 2024-12-19 10:17

docker.io/nginx:1.19.2-alpine (alpine 3.12.0) (alpine)
低危漏洞:10 中危漏洞:32 高危漏洞:60 严重漏洞:7
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
apk-tools CVE-2021-36159 严重 2.10.5-r1 2.10.7-r0 libfetch: an out of boundary read while libfetch uses strtol to parse the relevant numbers into address bytes leads to information leak or crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36159

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-08-03 14:15 修改: 2023-11-07 03:36
curl CVE-2021-22945 严重 7.69.1-r0 7.79.0-r0 curl: use-after-free and double-free in MQTT sending

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22945

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-09-23 13:15 修改: 2024-03-27 15:04
freetype CVE-2022-27404 严重 2.10.2-r0 2.10.4-r1 FreeType: Buffer overflow in sfnt_init_face

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27404

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
libcrypto1.1 CVE-2021-3711 严重 1.1.1g-r0 1.1.1l-r0 openssl: SM2 Decryption Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3711

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
libcurl CVE-2021-22945 严重 7.69.1-r0 7.79.0-r0 curl: use-after-free and double-free in MQTT sending

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22945

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-09-23 13:15 修改: 2024-03-27 15:04
libssl1.1 CVE-2021-3711 严重 1.1.1g-r0 1.1.1l-r0 openssl: SM2 Decryption Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3711

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
zlib CVE-2022-37434 严重 1.2.11-r3 1.2.12-r2 zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37434

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2022-08-05 07:15 修改: 2023-07-19 00:56
busybox CVE-2021-42382 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_s()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42382

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
busybox CVE-2021-42383 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42383

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
busybox CVE-2021-42384 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the handle_special()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42384

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
busybox CVE-2021-42385 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42385

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
busybox CVE-2021-42386 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the nvalloc()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42386

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
busybox CVE-2022-28391 高危 1.31.1-r16 1.31.1-r22 busybox: remote attackers may execute arbitrary code if netstat is used

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28391

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2022-04-03 21:15 修改: 2022-08-11 18:44
apk-tools CVE-2021-30139 高危 2.10.5-r1 2.10.6-r0

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-30139

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-04-21 16:15 修改: 2021-04-22 18:21
curl CVE-2020-8169 高危 7.69.1-r0 7.69.1-r1 libcurl: partial password leak over DNS on HTTP redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8169

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
curl CVE-2020-8177 高危 7.69.1-r0 7.69.1-r1 curl: Incorrect argument check can allow remote servers to overwrite local files

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8177

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
curl CVE-2020-8231 高危 7.69.1-r0 7.69.1-r2 curl: Expired pointer dereference via multi API with CURLOPT_CONNECT_ONLY option set

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8231

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
curl CVE-2020-8285 高危 7.69.1-r0 7.69.1-r3 curl: Malicious FTP server can trigger stack overflow when CURLOPT_CHUNK_BGN_FUNCTION is used

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8285

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
curl CVE-2020-8286 高危 7.69.1-r0 7.69.1-r3 curl: Inferior OCSP verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8286

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
curl CVE-2021-22901 高危 7.69.1-r0 7.77.0-r0 curl: Use-after-free in TLS session handling when using OpenSSL TLS backend

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22901

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:12
curl CVE-2021-22946 高危 7.69.1-r0 7.79.0-r0 curl: Requirement to use TLS not properly enforced for IMAP, POP3, and FTP protocols

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22946

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:12
curl CVE-2022-22576 高危 7.69.1-r0 7.79.1-r1 curl: OAUTH2 bearer bypass in connection re-use

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22576

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2022-05-26 17:15 修改: 2024-03-27 15:02
curl CVE-2022-27775 高危 7.69.1-r0 7.79.1-r1 curl: bad local IPv6 connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27775

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
busybox CVE-2021-28831 高危 1.31.1-r16 1.31.1-r20 busybox: invalid free or segmentation fault via malformed gzip data

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28831

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-03-19 05:15 修改: 2023-11-07 03:32
freetype CVE-2022-27405 高危 2.10.2-r0 2.10.4-r2 FreeType: Segmentation violation via FNT_Size_Request

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27405

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
freetype CVE-2022-27406 高危 2.10.2-r0 2.10.4-r2 Freetype: Segmentation violation via FT_Request_Size

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27406

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
busybox CVE-2021-42378 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_i()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42378

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
libcrypto1.1 CVE-2021-23840 高危 1.1.1g-r0 1.1.1j-r0 openssl: integer overflow in CipherUpdate

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libcrypto1.1 CVE-2021-3450 高危 1.1.1g-r0 1.1.1k-r0 openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3450

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-03-25 15:15 修改: 2023-11-07 03:38
libcrypto1.1 CVE-2021-3712 高危 1.1.1g-r0 1.1.1l-r0 openssl: Read buffer overruns processing ASN.1 strings

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
libcrypto1.1 CVE-2022-0778 高危 1.1.1g-r0 1.1.1n-r0 openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
busybox CVE-2021-42379 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the next_input_file()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42379

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
libcurl CVE-2020-8169 高危 7.69.1-r0 7.69.1-r1 libcurl: partial password leak over DNS on HTTP redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8169

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
libcurl CVE-2020-8177 高危 7.69.1-r0 7.69.1-r1 curl: Incorrect argument check can allow remote servers to overwrite local files

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8177

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
libcurl CVE-2020-8231 高危 7.69.1-r0 7.69.1-r2 curl: Expired pointer dereference via multi API with CURLOPT_CONNECT_ONLY option set

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8231

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
libcurl CVE-2020-8285 高危 7.69.1-r0 7.69.1-r3 curl: Malicious FTP server can trigger stack overflow when CURLOPT_CHUNK_BGN_FUNCTION is used

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8285

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
libcurl CVE-2020-8286 高危 7.69.1-r0 7.69.1-r3 curl: Inferior OCSP verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8286

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
libcurl CVE-2021-22901 高危 7.69.1-r0 7.77.0-r0 curl: Use-after-free in TLS session handling when using OpenSSL TLS backend

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22901

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:12
libcurl CVE-2021-22946 高危 7.69.1-r0 7.79.0-r0 curl: Requirement to use TLS not properly enforced for IMAP, POP3, and FTP protocols

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22946

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:12
libcurl CVE-2022-22576 高危 7.69.1-r0 7.79.1-r1 curl: OAUTH2 bearer bypass in connection re-use

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22576

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2022-05-26 17:15 修改: 2024-03-27 15:02
libcurl CVE-2022-27775 高危 7.69.1-r0 7.79.1-r1 curl: bad local IPv6 connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27775

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libgcrypt CVE-2021-33560 高危 1.8.5-r0 1.8.8-r0 libgcrypt: mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33560

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-06-08 11:15 修改: 2023-11-07 03:35
busybox CVE-2021-42380 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the clrvar()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42380

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
libssl1.1 CVE-2021-23840 高危 1.1.1g-r0 1.1.1j-r0 openssl: integer overflow in CipherUpdate

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libssl1.1 CVE-2021-3450 高危 1.1.1g-r0 1.1.1k-r0 openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3450

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-03-25 15:15 修改: 2023-11-07 03:38
libssl1.1 CVE-2021-3712 高危 1.1.1g-r0 1.1.1l-r0 openssl: Read buffer overruns processing ASN.1 strings

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
libssl1.1 CVE-2022-0778 高危 1.1.1g-r0 1.1.1n-r0 openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
libxml2 CVE-2021-3517 高危 2.9.10-r4 2.9.10-r6 libxml2: Heap-based buffer overflow in xmlEncodeEntitiesInternal() in entities.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3517

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-05-19 14:15 修改: 2023-11-07 03:38
libxml2 CVE-2021-3518 高危 2.9.10-r4 2.9.10-r6 libxml2: Use-after-free in xmlXIncludeDoProcess() in xinclude.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3518

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-05-18 12:15 修改: 2023-11-07 03:38
libxml2 CVE-2022-23308 高危 2.9.10-r4 2.9.13-r0 libxml2: Use-after-free of ID and IDREF attributes

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23308

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2022-02-26 05:15 修改: 2023-11-07 03:44
libxslt CVE-2021-30560 高危 1.1.34-r0 1.1.35-r0 Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-30560

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-08-03 19:15 修改: 2024-03-27 14:45
ncurses-libs CVE-2021-39537 高危 6.2_p20200523-r0 6.2_p20200523-r1 ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
ncurses-terminfo-base CVE-2021-39537 高危 6.2_p20200523-r0 6.2_p20200523-r1 ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
ssl_client CVE-2021-28831 高危 1.31.1-r16 1.31.1-r20 busybox: invalid free or segmentation fault via malformed gzip data

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28831

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-03-19 05:15 修改: 2023-11-07 03:32
ssl_client CVE-2021-42378 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_i()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42378

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
ssl_client CVE-2021-42379 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the next_input_file()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42379

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
ssl_client CVE-2021-42380 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the clrvar()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42380

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
ssl_client CVE-2021-42381 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the hash_init()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42381

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
ssl_client CVE-2021-42382 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_s()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42382

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
ssl_client CVE-2021-42383 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42383

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
ssl_client CVE-2021-42384 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the handle_special()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42384

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
ssl_client CVE-2021-42385 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42385

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
ssl_client CVE-2021-42386 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the nvalloc()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42386

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
ssl_client CVE-2022-28391 高危 1.31.1-r16 1.31.1-r22 busybox: remote attackers may execute arbitrary code if netstat is used

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28391

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2022-04-03 21:15 修改: 2022-08-11 18:44
xz-libs CVE-2022-1271 高危 5.2.5-r0 5.2.5-r1 gzip: arbitrary-file-write vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47
busybox CVE-2021-42381 高危 1.31.1-r16 1.31.1-r21 busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the hash_init()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42381

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
zlib CVE-2018-25032 高危 1.2.11-r3 1.2.12-r0 zlib: A flaw found in zlib when compressing (not decompressing) certain inputs

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-25032

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2022-03-25 09:15 修改: 2023-11-07 02:56
brotli-libs CVE-2020-8927 中危 1.0.7-r5 1.0.9-r0 brotli: buffer overflow when input chunk is larger than 2GiB

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8927

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2020-09-15 10:15 修改: 2023-11-07 03:26
busybox CVE-2021-42374 中危 1.31.1-r16 1.31.1-r21 busybox: out-of-bounds read in unlzma applet leads to information leak and denial of service when crafted LZMA-compressed input is decompressed

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42374

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
libssl1.1 CVE-2020-1971 中危 1.1.1g-r0 1.1.1i-r0 openssl: EDIPARTYNAME NULL pointer de-reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15
libssl1.1 CVE-2021-23841 中危 1.1.1g-r0 1.1.1j-r0 openssl: NULL pointer dereference in X509_issuer_and_serial_hash()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23841

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libssl1.1 CVE-2021-3449 中危 1.1.1g-r0 1.1.1k-r0 openssl: NULL pointer dereference in signature_algorithms processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3449

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-03-25 15:15 修改: 2024-06-21 19:15
curl CVE-2021-22876 中危 7.69.1-r0 7.76.0-r0 curl: Leak of authentication credentials in URL via automatic Referer

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22876

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-04-01 18:15 修改: 2024-03-27 15:47
freetype CVE-2020-15999 中危 2.10.2-r0 2.10.4-r0 freetype: Heap-based buffer overflow due to integer truncation in Load_SBit_Png

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15999

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2020-11-03 03:15 修改: 2024-07-25 17:25
curl CVE-2021-22922 中危 7.69.1-r0 7.78.0-r0 curl: Content not matching hash in Metalink is not being discarded

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22922

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:12
libxml2 CVE-2020-24977 中危 2.9.10-r4 2.9.10-r5 libxml2: Buffer overflow vulnerability in xmlEncodeEntitiesInternal() in entities.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24977

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2020-09-04 00:15 修改: 2023-11-07 03:20
libxml2 CVE-2021-3537 中危 2.9.10-r4 2.9.10-r6 libxml2: NULL pointer dereference when post-validating mixed content parsed in recovery mode

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3537

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-05-14 20:15 修改: 2023-11-07 03:38
libxml2 CVE-2021-3541 中危 2.9.10-r4 2.9.12-r0 libxml2: Exponential entity expansion attack bypasses all existing protection mechanisms

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3541

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-07-09 17:15 修改: 2022-03-01 18:25
libxml2 CVE-2022-29824 中危 2.9.10-r4 2.9.14-r0 libxml2: integer overflows in xmlBuf and xmlBuffer lead to out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29824

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2022-05-03 03:15 修改: 2023-11-07 03:46
curl CVE-2021-22923 中危 7.69.1-r0 7.78.0-r0 curl: Metalink download sends credentials

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22923

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
musl CVE-2020-28928 中危 1.1.24-r8 1.1.24-r10 In musl libc through 1.2.1, wcsnrtombs mishandles particular combinati ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28928

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2020-11-24 18:15 修改: 2023-11-07 03:21
musl-utils CVE-2020-28928 中危 1.1.24-r8 1.1.24-r10 In musl libc through 1.2.1, wcsnrtombs mishandles particular combinati ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28928

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2020-11-24 18:15 修改: 2023-11-07 03:21
curl CVE-2021-22925 中危 7.69.1-r0 7.78.0-r0 curl: Incorrect fix for CVE-2021-22898 TELNET stack contents disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22925

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
curl CVE-2021-22947 中危 7.69.1-r0 7.79.0-r0 curl: Server responses received before STARTTLS processed after TLS handshake

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22947

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:03
curl CVE-2022-27774 中危 7.69.1-r0 7.79.1-r1 curl: credential leak on redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27774

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libcurl CVE-2021-22876 中危 7.69.1-r0 7.76.0-r0 curl: Leak of authentication credentials in URL via automatic Referer

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22876

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-04-01 18:15 修改: 2024-03-27 15:47
libcurl CVE-2021-22922 中危 7.69.1-r0 7.78.0-r0 curl: Content not matching hash in Metalink is not being discarded

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22922

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:12
libcurl CVE-2021-22923 中危 7.69.1-r0 7.78.0-r0 curl: Metalink download sends credentials

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22923

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
libcurl CVE-2021-22925 中危 7.69.1-r0 7.78.0-r0 curl: Incorrect fix for CVE-2021-22898 TELNET stack contents disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22925

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
libcurl CVE-2021-22947 中危 7.69.1-r0 7.79.0-r0 curl: Server responses received before STARTTLS processed after TLS handshake

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22947

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:03
libcurl CVE-2022-27774 中危 7.69.1-r0 7.79.1-r1 curl: credential leak on redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27774

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libcurl CVE-2022-27776 中危 7.69.1-r0 7.79.1-r1 curl: auth/cookie leak on redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27776

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libcrypto1.1 CVE-2020-1971 中危 1.1.1g-r0 1.1.1i-r0 openssl: EDIPARTYNAME NULL pointer de-reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15
libgcrypt CVE-2021-40528 中危 1.8.5-r0 1.8.8-r1 libgcrypt: ElGamal implementation allows plaintext recovery

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-40528

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-09-06 19:15 修改: 2023-11-07 03:38
libjpeg-turbo CVE-2021-20205 中危 2.0.5-r0 2.1.0-r0 libjpeg-turbo: DoS via open crafted GIF

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20205

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-03-10 17:15 修改: 2023-11-07 03:29
ssl_client CVE-2021-42374 中危 1.31.1-r16 1.31.1-r21 busybox: out-of-bounds read in unlzma applet leads to information leak and denial of service when crafted LZMA-compressed input is decompressed

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42374

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
libcrypto1.1 CVE-2021-23841 中危 1.1.1g-r0 1.1.1j-r0 openssl: NULL pointer dereference in X509_issuer_and_serial_hash()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23841

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libcrypto1.1 CVE-2021-3449 中危 1.1.1g-r0 1.1.1k-r0 openssl: NULL pointer dereference in signature_algorithms processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3449

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-03-25 15:15 修改: 2024-06-21 19:15
curl CVE-2022-27776 中危 7.69.1-r0 7.79.1-r1 curl: auth/cookie leak on redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27776

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
curl CVE-2021-22898 低危 7.69.1-r0 7.77.0-r0 curl: TELNET stack contents disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22898

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:47
curl CVE-2021-22924 低危 7.69.1-r0 7.78.0-r0 curl: Bad connection reuse due to flawed path name checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22924

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
libssl1.1 CVE-2021-23839 低危 1.1.1g-r0 1.1.1j-r0 openssl: incorrect SSLv2 rollback protection

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23839

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libcrypto1.1 CVE-2021-23839 低危 1.1.1g-r0 1.1.1j-r0 openssl: incorrect SSLv2 rollback protection

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23839

镜像层: sha256:50644c29ef5a27c9a40c393a73ece2479de78325cae7d762ef3cdc19bf42dd0a

发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
curl CVE-2020-8284 低危 7.69.1-r0 7.74.0-r0 curl: FTP PASV command response can cause curl to connect to arbitrary host

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8284

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2020-12-14 20:15 修改: 2024-04-08 22:50
curl CVE-2021-22890 低危 7.69.1-r0 7.76.0-r0 curl: TLS 1.3 session ticket mix-up with HTTPS proxy host

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22890

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-04-01 18:15 修改: 2024-03-27 15:47
libcurl CVE-2020-8284 低危 7.69.1-r0 7.74.0-r0 curl: FTP PASV command response can cause curl to connect to arbitrary host

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8284

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2020-12-14 20:15 修改: 2024-04-08 22:50
libcurl CVE-2021-22890 低危 7.69.1-r0 7.76.0-r0 curl: TLS 1.3 session ticket mix-up with HTTPS proxy host

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22890

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-04-01 18:15 修改: 2024-03-27 15:47
libcurl CVE-2021-22898 低危 7.69.1-r0 7.77.0-r0 curl: TELNET stack contents disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22898

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:47
libcurl CVE-2021-22924 低危 7.69.1-r0 7.78.0-r0 curl: Bad connection reuse due to flawed path name checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22924

镜像层: sha256:6bcd003260b28cbc6ea63beb410b5283889dbe795884be1bb0ed486cda1cafe9

发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11