docker.io/openjdk:17-oracle linux/amd64

docker.io/openjdk:17-oracle - Trivy安全扫描结果扫描时间: 2024-12-06 15:04

全部漏洞信息

低危漏洞:21

中危漏洞:95

高危漏洞:44

严重漏洞:0

系统OS: oracle 8.5 扫描引擎: Trivy 扫描时间: 2024-12-06 15:04

docker.io/openjdk:17-oracle (oracle 8.5) (oracle)

低危漏洞:21

中危漏洞:95

高危漏洞:44

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
expat	CVE-2022-40674	高危	2.2.5-4.0.1.el8_5.3	2.2.5-8.0.1.el8_6.3	expat: a use-after-free in the doContent function in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40674 镜像层: sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52 发布日期: 2022-09-14 11:15 修改: 2023-11-07 03:52
glibc	CVE-2023-4527	高危	2.28-164.0.5.el8_5.3	2.28-225.0.4.el8_8.6	glibc: Stack read overflow in getaddrinfo in no-aaaa mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc	CVE-2023-4806	高危	2.28-164.0.5.el8_5.3	2.28-225.0.4.el8_8.6	glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc	CVE-2023-4813	高危	2.28-164.0.5.el8_5.3	2.28-225.0.4.el8_8.6	glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
glibc	CVE-2023-4911	高危	2.28-164.0.5.el8_5.3	2.28-225.0.4.el8_8.6	glibc: buffer overflow in ld.so leading to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-10-03 18:15 修改: 2024-09-17 19:46
glibc	CVE-2024-2961	高危	2.28-164.0.5.el8_5.3	2.28-251.0.2.el8_10.1	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc	CVE-2024-33599	高危	2.28-164.0.5.el8_5.3	2.28-251.0.2.el8_10.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc	CVE-2024-33600	高危	2.28-164.0.5.el8_5.3	2.28-251.0.2.el8_10.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc	CVE-2024-33601	高危	2.28-164.0.5.el8_5.3	2.28-251.0.2.el8_10.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc	CVE-2024-33602	高危	2.28-164.0.5.el8_5.3	2.28-251.0.2.el8_10.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-common	CVE-2023-4527	高危	2.28-164.0.5.el8_5.3	2.28-225.0.4.el8_8.6	glibc: Stack read overflow in getaddrinfo in no-aaaa mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-common	CVE-2023-4806	高危	2.28-164.0.5.el8_5.3	2.28-225.0.4.el8_8.6	glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-common	CVE-2023-4813	高危	2.28-164.0.5.el8_5.3	2.28-225.0.4.el8_8.6	glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
glibc-common	CVE-2023-4911	高危	2.28-164.0.5.el8_5.3	2.28-225.0.4.el8_8.6	glibc: buffer overflow in ld.so leading to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-10-03 18:15 修改: 2024-09-17 19:46
glibc-common	CVE-2024-2961	高危	2.28-164.0.5.el8_5.3	2.28-251.0.2.el8_10.1	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc-common	CVE-2024-33599	高危	2.28-164.0.5.el8_5.3	2.28-251.0.2.el8_10.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-common	CVE-2024-33600	高危	2.28-164.0.5.el8_5.3	2.28-251.0.2.el8_10.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-common	CVE-2024-33601	高危	2.28-164.0.5.el8_5.3	2.28-251.0.2.el8_10.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-common	CVE-2024-33602	高危	2.28-164.0.5.el8_5.3	2.28-251.0.2.el8_10.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2023-4527	高危	2.28-164.0.5.el8_5.3	2.28-225.0.4.el8_8.6	glibc: Stack read overflow in getaddrinfo in no-aaaa mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-minimal-langpack	CVE-2023-4806	高危	2.28-164.0.5.el8_5.3	2.28-225.0.4.el8_8.6	glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-minimal-langpack	CVE-2023-4813	高危	2.28-164.0.5.el8_5.3	2.28-225.0.4.el8_8.6	glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
glibc-minimal-langpack	CVE-2023-4911	高危	2.28-164.0.5.el8_5.3	2.28-225.0.4.el8_8.6	glibc: buffer overflow in ld.so leading to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-10-03 18:15 修改: 2024-09-17 19:46
glibc-minimal-langpack	CVE-2024-2961	高危	2.28-164.0.5.el8_5.3	2.28-251.0.2.el8_10.1	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2024-33599	高危	2.28-164.0.5.el8_5.3	2.28-251.0.2.el8_10.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2024-33600	高危	2.28-164.0.5.el8_5.3	2.28-251.0.2.el8_10.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2024-33601	高危	2.28-164.0.5.el8_5.3	2.28-251.0.2.el8_10.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2024-33602	高危	2.28-164.0.5.el8_5.3	2.28-251.0.2.el8_10.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
krb5-libs	CVE-2022-42898	高危	1.18.2-14.0.1.el8	1.18.2-22.0.1.el8_7	krb5: integer overflow vulnerabilities in PAC parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42898 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-12-25 06:15 修改: 2023-10-08 09:15
krb5-libs	CVE-2024-3596	高危	1.18.2-14.0.1.el8	1.18.2-30.0.1.el8_10	freeradius: forgery attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-3596 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-07-09 12:15 修改: 2024-07-23 09:15
libgcc	CVE-2022-40982	高危	8.5.0-4.0.2.el8_5	8.5.0-18.0.5.el8	hw: Intel: Gather Data Sampling (GDS) side channel vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40982 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-08-11 03:15 修改: 2023-11-07 03:52
libgcrypt	CVE-2021-40528	高危	1.8.5-6.el8	1.8.5-7.el8_6	libgcrypt: ElGamal implementation allows plaintext recovery 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-40528 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2021-09-06 19:15 修改: 2023-11-07 03:38
libksba	CVE-2022-3515	高危	1.3.5-7.el8	1.3.5-8.el8_6	libksba: integer overflow may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3515 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-01-12 15:15 修改: 2023-07-06 19:15
libksba	CVE-2022-47629	高危	1.3.5-7.el8	1.3.5-9.el8_7	libksba: integer overflow to code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-47629 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-12-20 23:15 修改: 2023-11-07 03:56
libnghttp2	CVE-2023-44487	高危	1.33.0-3.el8_2.1	1.33.0-5.el8_8	HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-10-10 14:15 修改: 2024-08-14 19:57
libstdc++	CVE-2022-40982	高危	8.5.0-4.0.2.el8_5	8.5.0-18.0.5.el8	hw: Intel: Gather Data Sampling (GDS) side channel vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40982 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-08-11 03:15 修改: 2023-11-07 03:52
openssl-libs	CVE-2022-2097	高危	1:1.1.1k-6.el8_5	1:1.1.1k-7.el8_6	openssl: AES OCB fails to encrypt some bytes 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2097 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-07-05 11:15 修改: 2024-06-21 19:15
openssl-libs	CVE-2022-4304	高危	1:1.1.1k-6.el8_5	1:1.1.1k-9.el8_7	openssl: timing attack in RSA Decryption implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl-libs	CVE-2022-4450	高危	1:1.1.1k-6.el8_5	1:1.1.1k-9.el8_7	openssl: double free after calling PEM_read_bio_ex 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl-libs	CVE-2023-0215	高危	1:1.1.1k-6.el8_5	1:1.1.1k-9.el8_7	openssl: use-after-free following BIO_new_NDEF 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
openssl-libs	CVE-2023-0286	高危	1:1.1.1k-6.el8_5	1:1.1.1k-9.el8_7	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
systemd-libs	CVE-2022-2526	高危	239-51.0.1.el8_5.5	239-58.0.1.el8_6.4	systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2526 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-09-09 15:15 修改: 2023-01-20 03:17
xz-libs	CVE-2022-1271	高危	5.2.4-3.el8	5.2.4-4.el8_6	gzip: arbitrary-file-write vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47
zlib	CVE-2018-25032	高危	1.2.11-17.el8	1.2.11-18.el8_5	zlib: A flaw found in zlib when compressing (not decompressing) certain inputs 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-25032 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-03-25 09:15 修改: 2023-11-07 02:56
binutils	CVE-2022-4285	中危	2.30-108.0.2.el8_5.1	2.30-119.0.2.el8_8.2	binutils: NULL pointer dereference in _bfd_elf_get_symbol_version_string leads to segfault 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4285 镜像层: sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52 发布日期: 2023-01-27 18:15 修改: 2023-11-07 03:57
expat	CVE-2022-25313	中危	2.2.5-4.0.1.el8_5.3	2.2.5-8.0.1.el8_6.2	expat: Stack exhaustion in doctype parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25313 镜像层: sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52 发布日期: 2022-02-18 05:15 修改: 2023-11-07 03:44
expat	CVE-2022-25314	中危	2.2.5-4.0.1.el8_5.3	2.2.5-8.0.1.el8_6.2	expat: Integer overflow in copyString() 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25314 镜像层: sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52 发布日期: 2022-02-18 05:15 修改: 2023-11-07 03:44
expat	CVE-2022-43680	中危	2.2.5-4.0.1.el8_5.3	2.2.5-10.0.1.el8_7.1	expat: use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43680 镜像层: sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52 发布日期: 2022-10-24 14:15 修改: 2024-01-21 02:08
expat	CVE-2023-52425	中危	2.2.5-4.0.1.el8_5.3	2.2.5-11.0.1.el8_9.1	expat: parsing large tokens can trigger a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52425 镜像层: sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52 发布日期: 2024-02-04 20:15 修改: 2024-08-26 20:35
expat	CVE-2024-45490	中危	2.2.5-4.0.1.el8_5.3	2.2.5-15.0.1.el8_10	libexpat: Negative Length Parsing Vulnerability in libexpat 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45490 镜像层: sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52 发布日期: 2024-08-30 03:15 修改: 2024-10-18 12:24
expat	CVE-2024-45491	中危	2.2.5-4.0.1.el8_5.3	2.2.5-15.0.1.el8_10	libexpat: Integer Overflow or Wraparound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45491 镜像层: sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
expat	CVE-2024-45492	中危	2.2.5-4.0.1.el8_5.3	2.2.5-15.0.1.el8_10	libexpat: integer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45492 镜像层: sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
expat	CVE-2024-50602	中危	2.2.5-4.0.1.el8_5.3	2.2.5-16.0.1.el8_10	libexpat: expat: DoS via XML_ResumeParser 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50602 镜像层: sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52 发布日期: 2024-10-27 05:15 修改: 2024-10-30 18:35
freetype	CVE-2022-27404	中危	2.9.1-4.el8_3.1	2.9.1-9.el8	FreeType: Buffer overflow in sfnt_init_face 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27404 镜像层: sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52 发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
freetype	CVE-2022-27405	中危	2.9.1-4.el8_3.1	2.9.1-9.el8	FreeType: Segmentation violation via FNT_Size_Request 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27405 镜像层: sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52 发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
freetype	CVE-2022-27406	中危	2.9.1-4.el8_3.1	2.9.1-9.el8	Freetype: Segmentation violation via FT_Request_Size 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27406 镜像层: sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52 发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
glib2	CVE-2022-22624	中危	2.56.4-156.el8	2.56.4-159.0.1.el8	webkitgtk: Use-after-free leading to arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22624 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-09-23 19:15 修改: 2022-09-28 12:03
gmp	CVE-2021-43618	中危	1:6.1.2-10.el8	1:6.1.2-11.el8	gmp: Integer overflow and resultant buffer overflow via crafted input 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43618 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2021-11-15 04:15 修改: 2023-09-29 15:15
gnupg2	CVE-2022-34903	中危	2.2.20-2.el8	2.2.20-3.el8_6	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
gnutls	CVE-2022-2509	中危	3.6.16-4.el8	3.6.16-5.el8_6	gnutls: Double free during gnutls_pkcs7_verify 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2509 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-08-01 14:15 修改: 2023-11-07 03:46
gnutls	CVE-2023-0361	中危	3.6.16-4.el8	3.6.16-6.el8_7	gnutls: timing side-channel in the TLS RSA key exchange code 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0361 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-02-15 18:15 修改: 2023-11-07 04:00
gnutls	CVE-2023-5981	中危	3.6.16-4.el8	3.6.16-8.el8_9	gnutls: timing side-channel in the RSA-PSK authentication 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5981 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-11-28 12:15 修改: 2024-09-16 13:15
gnutls	CVE-2024-0553	中危	3.6.16-4.el8	3.6.16-8.el8_9.1	gnutls: incomplete fix for CVE-2023-5981 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0553 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-01-16 12:15 修改: 2024-09-16 13:15
gnutls	CVE-2024-28834	中危	3.6.16-4.el8	3.6.16-8.el8_9.3	gnutls: vulnerable to Minerva side-channel information leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28834 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-03-21 14:15 修改: 2024-11-21 21:15
glib2	CVE-2022-22628	中危	2.56.4-156.el8	2.56.4-159.0.1.el8	webkitgtk: Use-after-free leading to arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22628 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-09-23 19:15 修改: 2022-09-28 12:06
glib2	CVE-2022-22629	中危	2.56.4-156.el8	2.56.4-159.0.1.el8	webkitgtk: Buffer overflow leading to arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22629 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-09-23 20:15 修改: 2022-09-27 04:48
krb5-libs	CVE-2024-26458	中危	1.18.2-14.0.1.el8	1.18.2-27.0.1.el8_10	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
krb5-libs	CVE-2024-26461	中危	1.18.2-14.0.1.el8	1.18.2-27.0.1.el8_10	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
krb5-libs	CVE-2024-37370	中危	1.18.2-14.0.1.el8	1.18.2-29.0.1.el8_10	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
krb5-libs	CVE-2024-37371	中危	1.18.2-14.0.1.el8	1.18.2-29.0.1.el8_10	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libcap	CVE-2023-2602	中危	2.26-5.el8	2.48-5.el8_8	libcap: Memory Leak on pthread_create() Error 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2602 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-06-06 20:15 修改: 2023-11-30 05:15
libcap	CVE-2023-2603	中危	2.26-5.el8	2.48-5.el8_8	libcap: Integer Overflow in _libcap_strdup() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2603 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-06-06 20:15 修改: 2024-10-10 16:32
libcom_err	CVE-2022-1304	中危	1.45.6-2.el8	1.45.6-5.el8	e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
libcurl	CVE-2022-22576	中危	7.61.1-22.el8	7.61.1-22.el8_6.3	curl: OAUTH2 bearer bypass in connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22576 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-05-26 17:15 修改: 2024-03-27 15:02
libcurl	CVE-2022-27774	中危	7.61.1-22.el8	7.61.1-22.el8_6.3	curl: credential leak on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27774 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libcurl	CVE-2022-27776	中危	7.61.1-22.el8	7.61.1-22.el8_6.3	curl: auth/cookie leak on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27776 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libcurl	CVE-2022-27782	中危	7.61.1-22.el8	7.61.1-22.el8_6.3	curl: TLS and SSH connection too eager reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27782 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
libcurl	CVE-2022-32206	中危	7.61.1-22.el8	7.61.1-22.el8_6.4	curl: HTTP compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32206 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
libcurl	CVE-2022-32208	中危	7.61.1-22.el8	7.61.1-22.el8_6.4	curl: FTP-KRB bad message verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32208 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
libcurl	CVE-2023-23916	中危	7.61.1-22.el8	7.61.1-25.el8_7.3	curl: HTTP multi-header compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54
libcurl	CVE-2023-27535	中危	7.61.1-22.el8	7.61.1-30.el8_8.2	curl: FTP too eager connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47
libcurl	CVE-2023-27536	中危	7.61.1-22.el8	7.61.1-30.el8_8.3	curl: GSS delegation too eager connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libcurl	CVE-2023-28321	中危	7.61.1-22.el8	7.61.1-30.el8_8.3	curl: IDN wildcard match may lead to Improper Cerificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-05-26 21:15 修改: 2023-11-07 04:10
libcurl	CVE-2023-28322	中危	7.61.1-22.el8	7.61.1-33.el8_9.5	curl: more POST-after-PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15
libcurl	CVE-2023-38546	中危	7.61.1-22.el8	7.61.1-33.el8_9.5	curl: cookie injection with none file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15
libcurl	CVE-2023-46218	中危	7.61.1-22.el8	7.61.1-33.el8_9.5	curl: information disclosure by exploiting a mixed case flaw 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
libcurl	CVE-2024-2398	中危	7.61.1-22.el8	7.61.1-34.el8_10.2	curl: HTTP/2 push headers memory-leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
curl	CVE-2022-22576	中危	7.61.1-22.el8	7.61.1-22.el8_6.3	curl: OAUTH2 bearer bypass in connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22576 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-05-26 17:15 修改: 2024-03-27 15:02
curl	CVE-2022-27774	中危	7.61.1-22.el8	7.61.1-22.el8_6.3	curl: credential leak on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27774 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
curl	CVE-2022-27776	中危	7.61.1-22.el8	7.61.1-22.el8_6.3	curl: auth/cookie leak on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27776 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
curl	CVE-2022-27782	中危	7.61.1-22.el8	7.61.1-22.el8_6.3	curl: TLS and SSH connection too eager reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27782 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
curl	CVE-2022-32206	中危	7.61.1-22.el8	7.61.1-22.el8_6.4	curl: HTTP compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32206 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
libnghttp2	CVE-2024-28182	中危	1.33.0-3.el8_2.1	1.33.0-6.el8_10.1	nghttp2: CONTINUATION frames DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28182 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-04-04 15:15 修改: 2024-05-01 18:15
libssh	CVE-2023-1667	中危	0.9.4-3.el8	0.9.6-10.el8_8	libssh: NULL pointer dereference during rekeying with algorithm guessing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1667 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-05-26 18:15 修改: 2023-12-22 10:15
libssh	CVE-2023-2283	中危	0.9.4-3.el8	0.9.6-10.el8_8	libssh: authorization bypass in pki_verify_data_signature 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2283 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-05-26 18:15 修改: 2024-02-01 17:15
libssh	CVE-2023-48795	中危	0.9.4-3.el8	0.9.6-13.el8_9	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-12-18 16:15 修改: 2024-05-01 18:15
libssh-config	CVE-2023-1667	中危	0.9.4-3.el8	0.9.6-10.el8_8	libssh: NULL pointer dereference during rekeying with algorithm guessing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1667 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-05-26 18:15 修改: 2023-12-22 10:15
libssh-config	CVE-2023-2283	中危	0.9.4-3.el8	0.9.6-10.el8_8	libssh: authorization bypass in pki_verify_data_signature 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2283 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-05-26 18:15 修改: 2024-02-01 17:15
libssh-config	CVE-2023-48795	中危	0.9.4-3.el8	0.9.6-13.el8_9	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-12-18 16:15 修改: 2024-05-01 18:15
curl	CVE-2022-32208	中危	7.61.1-22.el8	7.61.1-22.el8_6.4	curl: FTP-KRB bad message verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32208 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
libtasn1	CVE-2021-46848	中危	4.13-3.el8	4.13-4.el8_7	libtasn1: Out-of-bound access in ETYPE_OK 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46848 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-10-24 14:15 修改: 2023-11-07 03:40
libxml2	CVE-2016-3709	中危	2.9.7-12.el8_5	2.9.7-15.el8	libxml2: Incorrect server side include parsing can lead to XSS 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-3709 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-07-28 17:15 修改: 2022-12-07 16:39
libxml2	CVE-2022-29824	中危	2.9.7-12.el8_5	2.9.7-13.el8_6.1	libxml2: integer overflows in xmlBuf and xmlBuffer lead to out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29824 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-05-03 03:15 修改: 2023-11-07 03:46
libxml2	CVE-2022-40303	中危	2.9.7-12.el8_5	2.9.7-15.el8_7.1	libxml2: integer overflows with XML_PARSE_HUGE 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40303 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-11-23 00:15 修改: 2023-11-07 03:52
libxml2	CVE-2022-40304	中危	2.9.7-12.el8_5	2.9.7-15.el8_7.1	libxml2: dict corruption caused by entity reference cycles 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40304 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-11-23 18:15 修改: 2023-11-07 03:52
libxml2	CVE-2023-28484	中危	2.9.7-12.el8_5	2.9.7-16.el8_8.1	libxml2: NULL dereference in xmlSchemaFixupComplexType 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28484 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-04-24 21:15 修改: 2024-02-01 17:15
libxml2	CVE-2023-29469	中危	2.9.7-12.el8_5	2.9.7-16.el8_8.1	libxml2: Hashing of empty dict strings isn't deterministic 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29469 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-04-24 21:15 修改: 2023-06-01 14:15
libxml2	CVE-2023-39615	中危	2.9.7-12.el8_5	2.9.7-18.el8_9	libxml2: crafted xml can cause global buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39615 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-08-29 17:15 修改: 2024-08-02 19:15
libxml2	CVE-2024-25062	中危	2.9.7-12.el8_5	2.9.7-18.el8_10.1	libxml2: use-after-free in XMLReader 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25062 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-02-04 16:15 修改: 2024-02-13 00:40
ncurses-base	CVE-2023-29491	中危	6.1-9.20180224.el8	6.1-9.20180224.el8_8.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
ncurses-libs	CVE-2023-29491	中危	6.1-9.20180224.el8	6.1-9.20180224.el8_8.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
curl	CVE-2023-23916	中危	7.61.1-22.el8	7.61.1-25.el8_7.3	curl: HTTP multi-header compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54
curl	CVE-2023-27535	中危	7.61.1-22.el8	7.61.1-30.el8_8.2	curl: FTP too eager connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47
curl	CVE-2023-27536	中危	7.61.1-22.el8	7.61.1-30.el8_8.3	curl: GSS delegation too eager connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
curl	CVE-2023-28321	中危	7.61.1-22.el8	7.61.1-30.el8_8.3	curl: IDN wildcard match may lead to Improper Cerificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-05-26 21:15 修改: 2023-11-07 04:10
curl	CVE-2023-28322	中危	7.61.1-22.el8	7.61.1-33.el8_9.5	curl: more POST-after-PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15
openssl-libs	CVE-2022-1292	中危	1:1.1.1k-6.el8_5	1:1.1.1k-7.el8_6	openssl: c_rehash script allows command injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1292 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-05-03 16:15 修改: 2023-11-07 03:41
openssl-libs	CVE-2022-2068	中危	1:1.1.1k-6.el8_5	1:1.1.1k-7.el8_6	openssl: the c_rehash script allows command injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2068 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-06-21 15:15 修改: 2023-11-07 03:46
pcre2	CVE-2022-1586	中危	10.32-2.el8	10.32-3.el8_6	pcre2: Out-of-bounds read in compile_xclass_matchingpath in pcre2_jit_compile.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1586 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-05-16 21:15 修改: 2023-11-07 03:42
rpm	CVE-2021-35937	中危	4.14.3-19.el8_5.2	4.14.3-28.0.2.el8_9	rpm: TOCTOU race in checks for unsafe symlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:36
rpm	CVE-2021-35938	中危	4.14.3-19.el8_5.2	4.14.3-28.0.2.el8_9	rpm: races with chown/chmod/capabilities calls during installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-08-25 20:15 修改: 2022-11-29 18:06
rpm	CVE-2021-35939	中危	4.14.3-19.el8_5.2	4.14.3-28.0.2.el8_9	rpm: checks for unsafe symlinks are not performed for intermediary directories 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-08-26 16:15 修改: 2023-02-04 01:16
rpm-libs	CVE-2021-35937	中危	4.14.3-19.el8_5.2	4.14.3-28.0.2.el8_9	rpm: TOCTOU race in checks for unsafe symlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:36
rpm-libs	CVE-2021-35938	中危	4.14.3-19.el8_5.2	4.14.3-28.0.2.el8_9	rpm: races with chown/chmod/capabilities calls during installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-08-25 20:15 修改: 2022-11-29 18:06
rpm-libs	CVE-2021-35939	中危	4.14.3-19.el8_5.2	4.14.3-28.0.2.el8_9	rpm: checks for unsafe symlinks are not performed for intermediary directories 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-08-26 16:15 修改: 2023-02-04 01:16
sqlite-libs	CVE-2020-24736	中危	3.26.0-15.el8	3.26.0-18.0.1.el8_8	sqlite: Crash due to misuse of window functions. 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24736 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-04-11 18:15 修改: 2023-05-26 20:15
sqlite-libs	CVE-2020-35525	中危	3.26.0-15.el8	3.26.0-16.el8_6	sqlite: Null pointer derreference in src/select.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35525 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-09-01 18:15 修改: 2023-07-06 19:15
sqlite-libs	CVE-2020-35527	中危	3.26.0-15.el8	3.26.0-16.el8_6	sqlite: Out of bounds access during table rename 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35527 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-09-01 18:15 修改: 2022-12-08 22:29
sqlite-libs	CVE-2022-35737	中危	3.26.0-15.el8	3.26.0-17.el8_7	sqlite: an array-bounds overflow if billions of bytes are used in a string argument to a C API 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35737 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-08-03 06:15 修改: 2024-03-27 16:05
sqlite-libs	CVE-2023-7104	中危	3.26.0-15.el8	3.26.0-19.0.1.el8_9	sqlite: heap-buffer-overflow at sessionfuzz 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7104 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-12-29 10:15 修改: 2024-05-17 02:34
curl	CVE-2023-38546	中危	7.61.1-22.el8	7.61.1-33.el8_9.5	curl: cookie injection with none file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15
systemd-libs	CVE-2022-3821	中危	239-51.0.1.el8_5.5	239-68.0.2.el8_7.1	systemd: buffer overrun in format_timespan() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3821 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-11-08 22:15 修改: 2023-11-07 03:51
systemd-libs	CVE-2022-4415	中危	239-51.0.1.el8_5.5	239-68.0.2.el8_7.4	systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4415 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-01-11 15:15 修改: 2023-02-02 16:19
systemd-libs	CVE-2023-26604	中危	239-51.0.1.el8_5.5	239-74.0.4.el8_8.2	systemd: privilege escalation via the less pager 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09
systemd-libs	CVE-2023-7008	中危	239-51.0.1.el8_5.5	239-82.0.1.el8	systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
tar	CVE-2022-48303	中危	2:1.30-5.el8	2:1.30-6.el8_7.1	tar: heap buffer overflow at from_header() in list.c via specially crafted checksum 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48303 镜像层: sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52 发布日期: 2023-01-30 04:15 修改: 2023-05-30 17:16
curl	CVE-2023-46218	中危	7.61.1-22.el8	7.61.1-33.el8_9.5	curl: information disclosure by exploiting a mixed case flaw 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
curl	CVE-2024-2398	中危	7.61.1-22.el8	7.61.1-34.el8_10.2	curl: HTTP/2 push headers memory-leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
zlib	CVE-2022-37434	中危	1.2.11-17.el8	1.2.11-19.el8_6	zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37434 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-08-05 07:15 修改: 2023-07-19 00:56
libssh	CVE-2021-3634	低危	0.9.4-3.el8	0.9.6-3.el8	libssh: possible heap-based buffer overflow when rekeying 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3634 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2021-08-31 17:15 修改: 2023-12-22 10:15
libssh	CVE-2023-6004	低危	0.9.4-3.el8	0.9.6-14.el8	libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6004 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-01-03 17:15 修改: 2024-09-16 18:15
libssh	CVE-2023-6918	低危	0.9.4-3.el8	0.9.6-14.el8	libssh: Missing checks for return values for digests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6918 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-12-19 00:15 修改: 2024-09-16 18:15
curl	CVE-2022-35252	低危	7.61.1-22.el8	7.61.1-30.el8	curl: Incorrect handling of control code characters in cookies 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35252 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-09-23 14:15 修改: 2024-03-27 15:00
libarchive	CVE-2022-36227	低危	3.3.3-3.el8_5	3.3.3-5.el8	libarchive: NULL pointer dereference in archive_write.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-36227 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-11-22 02:15 修改: 2024-03-27 16:04
curl	CVE-2022-43552	低危	7.61.1-22.el8	7.61.1-30.el8	curl: Use-after-free triggered by an HTTP proxy deny response 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35
shadow-utils	CVE-2023-4641	低危	2:4.6-14.el8	2:4.6-19.el8	shadow-utils: possible password leak during passwd(1) change 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
libssh-config	CVE-2021-3634	低危	0.9.4-3.el8	0.9.6-3.el8	libssh: possible heap-based buffer overflow when rekeying 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3634 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2021-08-31 17:15 修改: 2023-12-22 10:15
openldap	CVE-2023-2953	低危	2.4.46-18.el8	2.4.46-19.el8_10	openldap: null pointer dereference in ber_memalloc_x function 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-05-30 22:15 修改: 2023-08-02 16:46
libssh-config	CVE-2023-6004	低危	0.9.4-3.el8	0.9.6-14.el8	libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6004 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-01-03 17:15 修改: 2024-09-16 18:15
libssh-config	CVE-2023-6918	低危	0.9.4-3.el8	0.9.6-14.el8	libssh: Missing checks for return values for digests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6918 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-12-19 00:15 修改: 2024-09-16 18:15
binutils	CVE-2018-12699	低危	2.30-108.0.2.el8_5.1	2.30-125.0.1.el8_10	binutils: heap-based buffer overflow in finish_stab in stabs.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12699 镜像层: sha256:27ee19dc88f2661d3e42161a9b0b5f4c59089269ee71c9f212c71139ea9edf52 发布日期: 2018-06-23 23:29 修改: 2019-08-03 13:15
libstdc++	CVE-2023-4039	低危	8.5.0-4.0.2.el8_5	8.5.0-18.0.5.el8	gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
libcurl	CVE-2022-35252	低危	7.61.1-22.el8	7.61.1-30.el8	curl: Incorrect handling of control code characters in cookies 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35252 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2022-09-23 14:15 修改: 2024-03-27 15:00
libcurl	CVE-2022-43552	低危	7.61.1-22.el8	7.61.1-30.el8	curl: Use-after-free triggered by an HTTP proxy deny response 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35
bzip2-libs	CVE-2019-12900	低危	1.0.6-26.el8	1.0.6-27.0.1.el8_10	bzip2: out-of-bounds write in function BZ2_decompress 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12900 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2019-06-19 23:15 修改: 2023-11-07 03:03
openssl-libs	CVE-2023-3446	低危	1:1.1.1k-6.el8_5	1:1.1.1k-12.el8_9	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15
openssl-libs	CVE-2023-3817	低危	1:1.1.1k-6.el8_5	1:1.1.1k-12.el8_9	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15
openssl-libs	CVE-2023-5678	低危	1:1.1.1k-6.el8_5	1:1.1.1k-12.el8_9	openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
openssl-libs	CVE-2024-5535	低危	1:1.1.1k-6.el8_5	1:1.1.1k-14.el8_6	openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
libgcc	CVE-2023-4039	低危	8.5.0-4.0.2.el8_5	8.5.0-18.0.5.el8	gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:c8dd97366670ed499701572c321fb87ef4f9287308536563a8f1e3fd39ff2166 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15