docker.io/openproject/openproject:17.5 linux/amd64

docker.io/openproject/openproject:17.5 - Trivy安全扫描结果扫描时间: 2026-06-15 12:13

全部漏洞信息

低危漏洞:323

中危漏洞:214

高危漏洞:133

严重漏洞:23

系统OS: debian 13.5 扫描引擎: Trivy 扫描时间: 2026-06-15 12:13

docker.io/openproject/openproject:17.5 (debian 13.5) (debian)

低危漏洞:317

中危漏洞:179

高危漏洞:90

严重漏洞:19

软件包	漏洞	安全状态	安装版本	漏洞信息
apache2	CVE-2026-29167	严重	2.4.67-1~deb13u3	Use After Free vulnerability in Apache HTTP Server with mod_ldap in pe ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29167 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:29
apache2-bin	CVE-2026-29167	严重	2.4.67-1~deb13u3	Use After Free vulnerability in Apache HTTP Server with mod_ldap in pe ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29167 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:29
apache2-data	CVE-2026-29167	严重	2.4.67-1~deb13u3	Use After Free vulnerability in Apache HTTP Server with mod_ldap in pe ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29167 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:29
apache2-utils	CVE-2026-29167	严重	2.4.67-1~deb13u3	Use After Free vulnerability in Apache HTTP Server with mod_ldap in pe ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29167 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:29
libperl5.40	CVE-2026-42496	严重	5.40.1-6	perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
libperl5.40	CVE-2026-8376	严重	5.40.1-6	Perl versions through 5.43.10 have a heap buffer overflow when compili ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-26 00:16 修改: 2026-05-27 19:16
libpython3.13-minimal	CVE-2026-7210	严重	3.13.5-2+deb13u2	python: expat: Python/Expat: Denial of Service via crafted XML document 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-05-11 18:16 修改: 2026-06-10 19:16
libpython3.13-stdlib	CVE-2026-7210	严重	3.13.5-2+deb13u2	python: expat: Python/Expat: Denial of Service via crafted XML document 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-05-11 18:16 修改: 2026-06-10 19:16
libraw23t64	CVE-2026-20884	严重	0.21.4-2	LibRaw: LibRaw: Arbitrary code execution via integer overflow in deflate_dng_load_raw 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20884 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-07 15:17 修改: 2026-04-10 20:50
libraw23t64	CVE-2026-24450	严重	0.21.4-2	LibRaw: LibRaw: Arbitrary code execution via a specially crafted malicious file 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24450 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-07 15:17 修改: 2026-04-10 20:51
libraw23t64	CVE-2026-24660	严重	0.21.4-2	LibRaw: LibRaw: Memory Corruption via Malicious File Processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24660 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-07 15:17 修改: 2026-04-10 20:51
perl	CVE-2026-42496	严重	5.40.1-6	perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
perl	CVE-2026-8376	严重	5.40.1-6	Perl versions through 5.43.10 have a heap buffer overflow when compili ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-26 00:16 修改: 2026-05-27 19:16
perl-base	CVE-2026-42496	严重	5.40.1-6	perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
perl-base	CVE-2026-8376	严重	5.40.1-6	Perl versions through 5.43.10 have a heap buffer overflow when compili ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-05-26 00:16 修改: 2026-05-27 19:16
perl-modules-5.40	CVE-2026-42496	严重	5.40.1-6	perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
perl-modules-5.40	CVE-2026-8376	严重	5.40.1-6	Perl versions through 5.43.10 have a heap buffer overflow when compili ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-26 00:16 修改: 2026-05-27 19:16
python3.13	CVE-2026-7210	严重	3.13.5-2+deb13u2	python: expat: Python/Expat: Denial of Service via crafted XML document 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-05-11 18:16 修改: 2026-06-10 19:16
python3.13-minimal	CVE-2026-7210	严重	3.13.5-2+deb13u2	python: expat: Python/Expat: Denial of Service via crafted XML document 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-05-11 18:16 修改: 2026-06-10 19:16
apache2-data	CVE-2026-44186	高危	2.4.67-1~deb13u3	Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability i ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44186 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
apache2-data	CVE-2026-48913	高危	2.4.67-1~deb13u3	Use After Free vulnerability in Apache HTTP Server module mod_http2 wh ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48913 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-10 19:31
apache2	CVE-2026-42536	高危	2.4.67-1~deb13u3	Heap-based Buffer Overflow vulnerability in Apache HTTP Server withmod ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42536 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 15:55
apache2-utils	CVE-2026-34355	高危	2.4.67-1~deb13u3	A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and e ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34355 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:20
apache2-utils	CVE-2026-34356	高危	2.4.67-1~deb13u3	Heap-based Buffer Overflow vulnerability in Apache HTTP Server with ma ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34356 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:17
apache2-utils	CVE-2026-42536	高危	2.4.67-1~deb13u3	Heap-based Buffer Overflow vulnerability in Apache HTTP Server withmod ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42536 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 15:55
apache2-utils	CVE-2026-44185	高危	2.4.67-1~deb13u3	Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44185 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
apache2-utils	CVE-2026-44186	高危	2.4.67-1~deb13u3	Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability i ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44186 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
apache2-utils	CVE-2026-48913	高危	2.4.67-1~deb13u3	Use After Free vulnerability in Apache HTTP Server module mod_http2 wh ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48913 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-10 19:31
curl	CVE-2026-5773	高危	8.14.1-2+deb13u3	curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
curl	CVE-2026-6276	高危	8.14.1-2+deb13u3	curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
dirmngr	CVE-2026-24882	高危	2.4.7-21+deb13u1+b3	GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
gnupg	CVE-2026-24882	高危	2.4.7-21+deb13u1	GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
gnupg-l10n	CVE-2026-24882	高危	2.4.7-21+deb13u1	GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
gpg	CVE-2026-24882	高危	2.4.7-21+deb13u1+b3	GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
gpg-agent	CVE-2026-24882	高危	2.4.7-21+deb13u1+b3	GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
gpgconf	CVE-2026-24882	高危	2.4.7-21+deb13u1+b3	GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
gpgsm	CVE-2026-24882	高危	2.4.7-21+deb13u1+b3	GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
libcurl3t64-gnutls	CVE-2026-5773	高危	8.14.1-2+deb13u3	curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
libcurl3t64-gnutls	CVE-2026-6276	高危	8.14.1-2+deb13u3	curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
libcurl4t64	CVE-2026-5773	高危	8.14.1-2+deb13u3	curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
libcurl4t64	CVE-2026-6276	高危	8.14.1-2+deb13u3	curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
libde265-0	CVE-2026-33164	高危	1.0.15-1+b3	libde265 is an open source implementation of the h.265 video codec. Pr ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33164 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-20 21:17 修改: 2026-03-23 20:05
libexpat1	CVE-2025-59375	高危	2.7.1-2	firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59375 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-09-15 03:15 修改: 2026-05-12 13:17
libexpat1	CVE-2026-25210	高危	2.7.1-2	libexpat: libexpat: Information disclosure and data integrity issues due to integer overflow in buffer reallocation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25210 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-30 07:16 修改: 2026-06-02 14:16
libexpat1	CVE-2026-45186	高危	2.7.1-2	libexpat: denial of service via crafted XML input 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45186 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-10 07:16 修改: 2026-05-14 17:20
libgif7	CVE-2026-23868	高危	5.2.2-1+b1	giflib: Giflib: Double-free vulnerability leading to memory corruption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23868 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-10 20:16 修改: 2026-05-07 18:18
libgif7	CVE-2026-26740	高危	5.2.2-1+b1	giflib: giflib: Denial of Service via buffer overflow in EGifGCBToExtension 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26740 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-18 18:16 修改: 2026-03-21 00:09
libheif-plugin-dav1d	CVE-2025-68431	高危	1.19.8-1	libheif is an HEIF and AVIF file format decoder and encoder. Prior to ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68431 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-12-29 19:15 修改: 2026-02-25 14:53
libheif-plugin-dav1d	CVE-2026-32740	高危	1.19.8-1	libheif: libheif: Arbitrary code execution or denial of service via crafted HEIF/AVIF file 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32740 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 20:16 修改: 2026-05-21 14:16
libheif-plugin-dav1d	CVE-2026-32741	高危	1.19.8-1	libheif: libheif: Heap buffer overflow vulnerability in image decoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32741 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 21:16 修改: 2026-05-20 17:16
libheif-plugin-dav1d	CVE-2026-32882	高危	1.19.8-1	libheif: libheif: Denial of Service and Information Disclosure vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32882 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 21:16 修改: 2026-05-20 18:16
libheif-plugin-dav1d	CVE-2026-41071	高危	1.19.8-1	libheif is a HEIF and AVIF file format decoder and encoder. In version ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41071 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-22 22:16 修改: 2026-05-27 15:25
libheif-plugin-libde265	CVE-2025-68431	高危	1.19.8-1	libheif is an HEIF and AVIF file format decoder and encoder. Prior to ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68431 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-12-29 19:15 修改: 2026-02-25 14:53
libheif-plugin-libde265	CVE-2026-32740	高危	1.19.8-1	libheif: libheif: Arbitrary code execution or denial of service via crafted HEIF/AVIF file 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32740 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 20:16 修改: 2026-05-21 14:16
libheif-plugin-libde265	CVE-2026-32741	高危	1.19.8-1	libheif: libheif: Heap buffer overflow vulnerability in image decoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32741 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 21:16 修改: 2026-05-20 17:16
libheif-plugin-libde265	CVE-2026-32882	高危	1.19.8-1	libheif: libheif: Denial of Service and Information Disclosure vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32882 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 21:16 修改: 2026-05-20 18:16
libheif-plugin-libde265	CVE-2026-41071	高危	1.19.8-1	libheif is a HEIF and AVIF file format decoder and encoder. In version ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41071 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-22 22:16 修改: 2026-05-27 15:25
libheif1	CVE-2025-68431	高危	1.19.8-1	libheif is an HEIF and AVIF file format decoder and encoder. Prior to ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68431 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-12-29 19:15 修改: 2026-02-25 14:53
libheif1	CVE-2026-32740	高危	1.19.8-1	libheif: libheif: Arbitrary code execution or denial of service via crafted HEIF/AVIF file 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32740 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 20:16 修改: 2026-05-21 14:16
libheif1	CVE-2026-32741	高危	1.19.8-1	libheif: libheif: Heap buffer overflow vulnerability in image decoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32741 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 21:16 修改: 2026-05-20 17:16
libheif1	CVE-2026-32882	高危	1.19.8-1	libheif: libheif: Denial of Service and Information Disclosure vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32882 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 21:16 修改: 2026-05-20 18:16
libheif1	CVE-2026-41071	高危	1.19.8-1	libheif is a HEIF and AVIF file format decoder and encoder. In version ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41071 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-22 22:16 修改: 2026-05-27 15:25
libncursesw6	CVE-2025-69720	高危	6.5+20250216-2	ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution. 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
apache2	CVE-2026-44185	高危	2.4.67-1~deb13u3	Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44185 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
apache2	CVE-2026-44186	高危	2.4.67-1~deb13u3	Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability i ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44186 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
libperl5.40	CVE-2026-42497	高危	5.40.1-6	Archive::Tar versions before 3.08 for Perl extract hardlinks to attack ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
libperl5.40	CVE-2026-48959	高危	5.40.1-6	IO::Uncompress::Unzip versions before 2.220 for Perl allow CPU exhaust ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
libperl5.40	CVE-2026-48962	高危	5.40.1-6	perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-27 04:16 修改: 2026-05-27 19:38
libperl5.40	CVE-2026-9538	高危	5.40.1-6	Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
apache2	CVE-2026-48913	高危	2.4.67-1~deb13u3	Use After Free vulnerability in Apache HTTP Server module mod_http2 wh ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48913 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-10 19:31
libpython3.13-minimal	CVE-2026-9669	高危	3.13.5-2+deb13u2	bz2.BZ2Decompressor objects could be reused after a decompression erro ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 23:17 修改: 2026-06-10 19:16
apache2	CVE-2026-34355	高危	2.4.67-1~deb13u3	A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and e ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34355 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:20
libpython3.13-stdlib	CVE-2026-9669	高危	3.13.5-2+deb13u2	bz2.BZ2Decompressor objects could be reused after a decompression erro ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 23:17 修改: 2026-06-10 19:16
apache2-bin	CVE-2026-34355	高危	2.4.67-1~deb13u3	A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and e ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34355 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:20
apache2-bin	CVE-2026-34356	高危	2.4.67-1~deb13u3	Heap-based Buffer Overflow vulnerability in Apache HTTP Server with ma ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34356 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:17
apache2-bin	CVE-2026-42536	高危	2.4.67-1~deb13u3	Heap-based Buffer Overflow vulnerability in Apache HTTP Server withmod ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42536 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 15:55
libraw23t64	CVE-2026-20889	高危	0.21.4-2	LibRaw: LibRaw: Arbitrary code execution via specially crafted image file 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20889 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-07 15:17 修改: 2026-04-10 20:51
libraw23t64	CVE-2026-21413	高危	0.21.4-2	LibRaw: LibRaw: Arbitrary code execution via heap-based buffer overflow in lossless JPEG loading 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-21413 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-07 15:17 修改: 2026-04-10 20:51
libsqlite3-0	CVE-2026-11822	高危	3.46.1-7+deb13u1	SQLite before 3.53.2 contains memory corruption vulnerabilities in the ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11822 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-06-09 20:16 修改: 2026-06-11 17:12
libsqlite3-0	CVE-2026-11824	高危	3.46.1-7+deb13u1	SQLite before 3.53.2 contains a heap-based buffer overflow vulnerabili ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11824 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-06-09 20:16 修改: 2026-06-11 17:12
libssh2-1t64	CVE-2026-7598	高危	1.11.1-1	libssh2: integer overflow via large username or password arguments 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7598 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-01 22:16 修改: 2026-05-07 01:47
libtinfo6	CVE-2025-69720	高危	6.5+20250216-2	ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution. 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
memcached	CVE-2026-47783	高危	1.6.38-1	memcached: memcached: Username enumeration via timing side channel 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47783 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-05-20 07:16 修改: 2026-05-21 17:06
ncurses-base	CVE-2025-69720	高危	6.5+20250216-2	ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution. 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
ncurses-bin	CVE-2025-69720	高危	6.5+20250216-2	ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution. 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
apache2-bin	CVE-2026-44185	高危	2.4.67-1~deb13u3	Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44185 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
apache2-bin	CVE-2026-44186	高危	2.4.67-1~deb13u3	Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability i ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44186 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
perl	CVE-2026-42497	高危	5.40.1-6	Archive::Tar versions before 3.08 for Perl extract hardlinks to attack ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
perl	CVE-2026-48959	高危	5.40.1-6	IO::Uncompress::Unzip versions before 2.220 for Perl allow CPU exhaust ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl	CVE-2026-48962	高危	5.40.1-6	perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-27 04:16 修改: 2026-05-27 19:38
perl	CVE-2026-9538	高危	5.40.1-6	Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
apache2-bin	CVE-2026-48913	高危	2.4.67-1~deb13u3	Use After Free vulnerability in Apache HTTP Server module mod_http2 wh ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48913 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-10 19:31
apache2	CVE-2026-34356	高危	2.4.67-1~deb13u3	Heap-based Buffer Overflow vulnerability in Apache HTTP Server with ma ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34356 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:17
perl-base	CVE-2026-42497	高危	5.40.1-6	Archive::Tar versions before 3.08 for Perl extract hardlinks to attack ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
perl-base	CVE-2026-48959	高危	5.40.1-6	IO::Uncompress::Unzip versions before 2.220 for Perl allow CPU exhaust ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl-base	CVE-2026-48962	高危	5.40.1-6	perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-05-27 04:16 修改: 2026-05-27 19:38
perl-base	CVE-2026-9538	高危	5.40.1-6	Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
apache2-data	CVE-2026-34355	高危	2.4.67-1~deb13u3	A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and e ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34355 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:20
apache2-data	CVE-2026-34356	高危	2.4.67-1~deb13u3	Heap-based Buffer Overflow vulnerability in Apache HTTP Server with ma ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34356 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:17
perl-modules-5.40	CVE-2026-42497	高危	5.40.1-6	Archive::Tar versions before 3.08 for Perl extract hardlinks to attack ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
perl-modules-5.40	CVE-2026-48959	高危	5.40.1-6	IO::Uncompress::Unzip versions before 2.220 for Perl allow CPU exhaust ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl-modules-5.40	CVE-2026-48962	高危	5.40.1-6	perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-27 04:16 修改: 2026-05-27 19:38
perl-modules-5.40	CVE-2026-9538	高危	5.40.1-6	Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
postfix	CVE-2026-43964	高危	3.10.5-1~deb13u1	postfix: buffer over-read via malformed enhanced status code 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43964 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-05-04 19:16 修改: 2026-05-11 21:17
python3-pkg-resources	CVE-2026-23949	高危	78.1.1-0.1	jaraco.context: jaraco.context: Path traversal via malicious tar archives 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23949 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-01-20 01:15 修改: 2026-03-11 23:12
apache2-data	CVE-2026-42536	高危	2.4.67-1~deb13u3	Heap-based Buffer Overflow vulnerability in Apache HTTP Server withmod ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42536 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 15:55
python3.13	CVE-2026-9669	高危	3.13.5-2+deb13u2	bz2.BZ2Decompressor objects could be reused after a decompression erro ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 23:17 修改: 2026-06-10 19:16
apache2-data	CVE-2026-44185	高危	2.4.67-1~deb13u3	Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44185 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
python3.13-minimal	CVE-2026-9669	高危	3.13.5-2+deb13u2	bz2.BZ2Decompressor objects could be reused after a decompression erro ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 23:17 修改: 2026-06-10 19:16
libcurl3t64-gnutls	CVE-2026-5545	中危	8.14.1-2+deb13u3	curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
libcurl3t64-gnutls	CVE-2026-6253	中危	8.14.1-2+deb13u3	curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
libcurl3t64-gnutls	CVE-2026-6429	中危	8.14.1-2+deb13u3	curl: libcurl: Credential leak via reused proxy connection during HTTP redirects 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
libcurl3t64-gnutls	CVE-2026-7168	中危	8.14.1-2+deb13u3	curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
apache2	CVE-2026-43951	中危	2.4.67-1~deb13u3	Out-of-bounds Read vulnerability in Apache HTTP Server with mod_header ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43951 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:00
apache2	CVE-2026-44119	中危	2.4.67-1~deb13u3	httpd: Apache HTTP Server: Local .htaccess authors can read files with httpd user privileges 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44119 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
libcurl4t64	CVE-2026-1965	中危	8.14.1-2+deb13u3	curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
libcurl4t64	CVE-2026-3783	中危	8.14.1-2+deb13u3	curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
libcurl4t64	CVE-2026-3784	中危	8.14.1-2+deb13u3	curl: curl: Unauthorized access due to improper HTTP proxy connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
libcurl4t64	CVE-2026-3805	中危	8.14.1-2+deb13u3	curl: curl: Arbitrary code execution or Denial of Service via use-after-free in SMB request handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3805 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:08
libcurl4t64	CVE-2026-4873	中危	8.14.1-2+deb13u3	curl: curl: Information disclosure due to incorrect TLS connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
libcurl4t64	CVE-2026-5545	中危	8.14.1-2+deb13u3	curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
libcurl4t64	CVE-2026-6253	中危	8.14.1-2+deb13u3	curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
libcurl4t64	CVE-2026-6429	中危	8.14.1-2+deb13u3	curl: libcurl: Credential leak via reused proxy connection during HTTP redirects 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
libcurl4t64	CVE-2026-7168	中危	8.14.1-2+deb13u3	curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
apache2	CVE-2026-44631	中危	2.4.67-1~deb13u3	httpd: Apache HTTP Server: Denial of Service via crafted regular expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44631 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
libde265-0	CVE-2024-38949	中危	1.0.15-1+b3	Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attacker ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-38949 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2024-06-26 20:15 修改: 2025-06-06 17:15
libde265-0	CVE-2024-38950	中危	1.0.15-1+b3	Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attacker ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-38950 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2024-06-26 20:15 修改: 2025-06-06 17:15
libde265-0	CVE-2026-33165	中危	1.0.15-1+b3	libde265 is an open source implementation of the h.265 video codec. Pr ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33165 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-20 21:17 修改: 2026-03-23 20:09
apache2	CVE-2026-29170	中危	2.4.67-1~deb13u3	httpd: Apache HTTP Server: Cross-site scripting in mod_proxy_ftp via HTML directory list generation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29170 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:21
apache2-utils	CVE-2026-29170	中危	2.4.67-1~deb13u3	httpd: Apache HTTP Server: Cross-site scripting in mod_proxy_ftp via HTML directory list generation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29170 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:21
apache2-utils	CVE-2026-42535	中危	2.4.67-1~deb13u3	httpd: Apache httpd mod_dav_fs: Denial of Service due to path handling issue 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42535 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:00
libexpat1	CVE-2025-66382	中危	2.7.1-2	libexpat: libexpat: Denial of service via crafted file processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-11-28 07:15 修改: 2026-06-02 14:16
libexpat1	CVE-2026-32776	中危	2.7.1-2	libexpat: libexpat: Denial of Service due to NULL pointer dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32776 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
libexpat1	CVE-2026-32777	中危	2.7.1-2	libexpat: libexpat: Denial of Service via infinite loop in DTD content parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32777 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
libexpat1	CVE-2026-32778	中危	2.7.1-2	libexpat: libexpat: Denial of Service via NULL pointer dereference after out-of-memory condition 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32778 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
libexpat1	CVE-2026-50219	中危	2.7.1-2	expat: libexpat: Use-after-free vulnerability due to improper handler call depth tracking 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50219 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-04 06:16 修改: 2026-06-04 18:39
apache2-utils	CVE-2026-43951	中危	2.4.67-1~deb13u3	Out-of-bounds Read vulnerability in Apache HTTP Server with mod_header ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43951 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:00
apache2-utils	CVE-2026-44119	中危	2.4.67-1~deb13u3	httpd: Apache HTTP Server: Local .htaccess authors can read files with httpd user privileges 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44119 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
libgssapi-krb5-2	CVE-2026-11850	中危	1.21.3-5+deb13u1	krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-11 10:16 修改: 2026-06-12 15:16
apache2-utils	CVE-2026-44631	中危	2.4.67-1~deb13u3	httpd: Apache HTTP Server: Denial of Service via crafted regular expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44631 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
bsdutils	CVE-2026-27456	中危	1:2.41-5	util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
bsdutils	CVE-2026-3184	中危	1:2.41-5	util-linux: util-linux: Access control bypass due to improper hostname canonicalization 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
apache2	CVE-2026-42535	中危	2.4.67-1~deb13u3	httpd: Apache httpd mod_dav_fs: Denial of Service due to path handling issue 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42535 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:00
apache2-bin	CVE-2026-29170	中危	2.4.67-1~deb13u3	httpd: Apache HTTP Server: Cross-site scripting in mod_proxy_ftp via HTML directory list generation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29170 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:21
libheif-plugin-dav1d	CVE-2026-32738	中危	1.19.8-1	libheif: libheif: Unsigned integer underflow leads to Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32738 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 19:16 修改: 2026-05-20 14:17
libheif-plugin-dav1d	CVE-2026-32739	中危	1.19.8-1	libheif: libheif: Denial of Service via crafted HEIF sequence file 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32739 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 20:16 修改: 2026-05-20 14:17
libheif-plugin-dav1d	CVE-2026-32814	中危	1.19.8-1	libheif: libheif: Information Disclosure via Crafted HEIF/AVIF Files 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32814 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 21:16 修改: 2026-05-20 14:16
libheif-plugin-dav1d	CVE-2026-41069	中危	1.19.8-1	libheif is a HEIF and AVIF file format decoder and encoder. In version ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41069 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-22 21:16 修改: 2026-05-27 15:26
curl	CVE-2026-1965	中危	8.14.1-2+deb13u3	curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
curl	CVE-2026-3783	中危	8.14.1-2+deb13u3	curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
curl	CVE-2026-3784	中危	8.14.1-2+deb13u3	curl: curl: Unauthorized access due to improper HTTP proxy connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
curl	CVE-2026-3805	中危	8.14.1-2+deb13u3	curl: curl: Arbitrary code execution or Denial of Service via use-after-free in SMB request handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3805 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:08
curl	CVE-2026-4873	中危	8.14.1-2+deb13u3	curl: curl: Information disclosure due to incorrect TLS connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
libheif-plugin-libde265	CVE-2026-32738	中危	1.19.8-1	libheif: libheif: Unsigned integer underflow leads to Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32738 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 19:16 修改: 2026-05-20 14:17
libheif-plugin-libde265	CVE-2026-32739	中危	1.19.8-1	libheif: libheif: Denial of Service via crafted HEIF sequence file 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32739 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 20:16 修改: 2026-05-20 14:17
libheif-plugin-libde265	CVE-2026-32814	中危	1.19.8-1	libheif: libheif: Information Disclosure via Crafted HEIF/AVIF Files 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32814 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 21:16 修改: 2026-05-20 14:16
libheif-plugin-libde265	CVE-2026-41069	中危	1.19.8-1	libheif is a HEIF and AVIF file format decoder and encoder. In version ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41069 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-22 21:16 修改: 2026-05-27 15:26
curl	CVE-2026-5545	中危	8.14.1-2+deb13u3	curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
curl	CVE-2026-6253	中危	8.14.1-2+deb13u3	curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
curl	CVE-2026-6429	中危	8.14.1-2+deb13u3	curl: libcurl: Credential leak via reused proxy connection during HTTP redirects 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
curl	CVE-2026-7168	中危	8.14.1-2+deb13u3	curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
apache2-bin	CVE-2026-42535	中危	2.4.67-1~deb13u3	httpd: Apache httpd mod_dav_fs: Denial of Service due to path handling issue 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42535 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:00
libheif1	CVE-2026-32738	中危	1.19.8-1	libheif: libheif: Unsigned integer underflow leads to Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32738 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 19:16 修改: 2026-05-20 14:17
libheif1	CVE-2026-32739	中危	1.19.8-1	libheif: libheif: Denial of Service via crafted HEIF sequence file 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32739 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 20:16 修改: 2026-05-20 14:17
libheif1	CVE-2026-32814	中危	1.19.8-1	libheif: libheif: Information Disclosure via Crafted HEIF/AVIF Files 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32814 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-19 21:16 修改: 2026-05-20 14:16
libheif1	CVE-2026-41069	中危	1.19.8-1	libheif is a HEIF and AVIF file format decoder and encoder. In version ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41069 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-22 21:16 修改: 2026-05-27 15:26
libk5crypto3	CVE-2026-11850	中危	1.21.3-5+deb13u1	krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-11 10:16 修改: 2026-06-12 15:16
libkrb5-3	CVE-2026-11850	中危	1.21.3-5+deb13u1	krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-11 10:16 修改: 2026-06-12 15:16
libkrb5support0	CVE-2026-11850	中危	1.21.3-5+deb13u1	krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-11 10:16 修改: 2026-06-12 15:16
liblastlog2-2	CVE-2026-27456	中危	2.41-5	util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
liblastlog2-2	CVE-2026-3184	中危	2.41-5	util-linux: util-linux: Access control bypass due to improper hostname canonicalization 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
liblzma5	CVE-2026-34743	中危	5.8.1-1	xz: XZ Utils: Denial of Service via buffer overflow in index decoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-02 19:21 修改: 2026-04-15 17:33
libmagickcore-7.q16-10	CVE-2026-48724	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via heap buffer overwrite in Floyd-Steinberg dithering 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48724 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:42
libmagickcore-7.q16-10	CVE-2026-48734	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via crafted MVG file leading to stack overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48734 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libmagickcore-7.q16-10	CVE-2026-48994	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via heap buffer over-write in MAT decoder 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48994 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libmagickcore-7.q16-10	CVE-2026-53463	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via incorrect arguments in distort operation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53463 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:43
libmagickwand-7.q16-10	CVE-2026-48724	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via heap buffer overwrite in Floyd-Steinberg dithering 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48724 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:42
libmagickwand-7.q16-10	CVE-2026-48734	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via crafted MVG file leading to stack overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48734 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libmagickwand-7.q16-10	CVE-2026-48994	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via heap buffer over-write in MAT decoder 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48994 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libmagickwand-7.q16-10	CVE-2026-53463	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via incorrect arguments in distort operation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53463 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:43
libmount1	CVE-2026-27456	中危	2.41-5	util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
libmount1	CVE-2026-3184	中危	2.41-5	util-linux: util-linux: Access control bypass due to improper hostname canonicalization 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
dirmngr	CVE-2025-68972	中危	2.4.7-21+deb13u1+b3	gnupg: GnuPG: Signature bypass via form feed character in signed messages 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
libopenjp2-7	CVE-2023-39328	中危	2.5.3-2.1~deb13u2	openjpeg: denail of service via crafted image file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39328 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2024-07-09 14:15 修改: 2025-08-18 16:45
libopenjp2-7	CVE-2023-39329	中危	2.5.3-2.1~deb13u2	openjpeg: Resource exhaustion will occur in the opj_t1_decode_cblks function in the tcd.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39329 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2024-07-13 03:15 修改: 2026-03-09 19:15
apache2-data	CVE-2026-29170	中危	2.4.67-1~deb13u3	httpd: Apache HTTP Server: Cross-site scripting in mod_proxy_ftp via HTML directory list generation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29170 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:21
gnupg	CVE-2025-68972	中危	2.4.7-21+deb13u1	gnupg: GnuPG: Signature bypass via form feed character in signed messages 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
apache2-data	CVE-2026-42535	中危	2.4.67-1~deb13u3	httpd: Apache httpd mod_dav_fs: Denial of Service due to path handling issue 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42535 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-09 16:00
gnupg-l10n	CVE-2025-68972	中危	2.4.7-21+deb13u1	gnupg: GnuPG: Signature bypass via form feed character in signed messages 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
apache2-data	CVE-2026-43951	中危	2.4.67-1~deb13u3	Out-of-bounds Read vulnerability in Apache HTTP Server with mod_header ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43951 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:00
gpg	CVE-2025-68972	中危	2.4.7-21+deb13u1+b3	gnupg: GnuPG: Signature bypass via form feed character in signed messages 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
libperl5.40	CVE-2025-15649	中危	5.40.1-6	IO::Uncompress::Unzip versions before 2.215 for Perl propagate uncaugh ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
libperl5.40	CVE-2026-7010	中危	5.40.1-6	HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-11 22:22 修改: 2026-05-12 16:48
apache2-data	CVE-2026-44119	中危	2.4.67-1~deb13u3	httpd: Apache HTTP Server: Local .htaccess authors can read files with httpd user privileges 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44119 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
gpg-agent	CVE-2025-68972	中危	2.4.7-21+deb13u1+b3	gnupg: GnuPG: Signature bypass via form feed character in signed messages 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
libpython3.13-minimal	CVE-2025-12781	中危	3.13.5-2+deb13u2	cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-01-21 20:16 修改: 2026-02-02 17:25
libpython3.13-minimal	CVE-2025-15366	中危	3.13.5-2+deb13u2	cpython: IMAP command injection in user-controlled commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.13-minimal	CVE-2025-15367	中危	3.13.5-2+deb13u2	cpython: POP3 command injection in user-controlled commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.13-minimal	CVE-2026-1502	中危	3.13.5-2+deb13u2	python: Python: HTTP header injection via CR/LF in proxy tunnel headers 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-04-10 18:16 修改: 2026-06-04 15:16
libpython3.13-minimal	CVE-2026-3276	中危	3.13.5-2+deb13u2	python: Python unicodedata: Denial of Service due to excessive CPU consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-03 16:16 修改: 2026-06-04 18:16
libpython3.13-minimal	CVE-2026-7774	中危	3.13.5-2+deb13u2	tarfile.data_filter could be bypassed using crafted link entries, incl ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-04 16:16 修改: 2026-06-10 19:16
libpython3.13-minimal	CVE-2026-8328	中危	3.13.5-2+deb13u2	The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-05-13 21:16 修改: 2026-06-10 19:16
apache2-data	CVE-2026-44631	中危	2.4.67-1~deb13u3	httpd: Apache HTTP Server: Denial of Service via crafted regular expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44631 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
gpgconf	CVE-2025-68972	中危	2.4.7-21+deb13u1+b3	gnupg: GnuPG: Signature bypass via form feed character in signed messages 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
libpython3.13-stdlib	CVE-2025-12781	中危	3.13.5-2+deb13u2	cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-01-21 20:16 修改: 2026-02-02 17:25
libpython3.13-stdlib	CVE-2025-15366	中危	3.13.5-2+deb13u2	cpython: IMAP command injection in user-controlled commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.13-stdlib	CVE-2025-15367	中危	3.13.5-2+deb13u2	cpython: POP3 command injection in user-controlled commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.13-stdlib	CVE-2026-1502	中危	3.13.5-2+deb13u2	python: Python: HTTP header injection via CR/LF in proxy tunnel headers 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-04-10 18:16 修改: 2026-06-04 15:16
libpython3.13-stdlib	CVE-2026-3276	中危	3.13.5-2+deb13u2	python: Python unicodedata: Denial of Service due to excessive CPU consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-03 16:16 修改: 2026-06-04 18:16
libpython3.13-stdlib	CVE-2026-7774	中危	3.13.5-2+deb13u2	tarfile.data_filter could be bypassed using crafted link entries, incl ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-04 16:16 修改: 2026-06-10 19:16
libpython3.13-stdlib	CVE-2026-8328	中危	3.13.5-2+deb13u2	The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-05-13 21:16 修改: 2026-06-10 19:16
apache2-bin	CVE-2026-43951	中危	2.4.67-1~deb13u3	Out-of-bounds Read vulnerability in Apache HTTP Server with mod_header ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43951 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:00
gpgsm	CVE-2025-68972	中危	2.4.7-21+deb13u1+b3	gnupg: GnuPG: Signature bypass via form feed character in signed messages 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
imagemagick	CVE-2026-48724	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via heap buffer overwrite in Floyd-Steinberg dithering 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48724 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:42
imagemagick	CVE-2026-48734	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via crafted MVG file leading to stack overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48734 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
imagemagick	CVE-2026-48994	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via heap buffer over-write in MAT decoder 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48994 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libraw23t64	CVE-2026-5342	中危	0.21.4-2	LibRaw: LibRaw: Out-of-bounds read via `load_flags/raw_width` argument manipulation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5342 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-02 15:16 修改: 2026-04-29 19:39
libsmartcols1	CVE-2026-27456	中危	2.41-5	util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
libsmartcols1	CVE-2026-3184	中危	2.41-5	util-linux: util-linux: Access control bypass due to improper hostname canonicalization 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
imagemagick	CVE-2026-53463	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via incorrect arguments in distort operation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53463 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:43
imagemagick-7-common	CVE-2026-48724	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via heap buffer overwrite in Floyd-Steinberg dithering 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48724 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:42
imagemagick-7-common	CVE-2026-48734	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via crafted MVG file leading to stack overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48734 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
imagemagick-7-common	CVE-2026-48994	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via heap buffer over-write in MAT decoder 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48994 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libuuid1	CVE-2026-27456	中危	2.41-5	util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
libuuid1	CVE-2026-3184	中危	2.41-5	util-linux: util-linux: Access control bypass due to improper hostname canonicalization 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
libxml2	CVE-2026-0990	中危	2.12.7+dfsg+really2.9.14-2.1+deb13u2	libxml2: libxml2: Denial of Service via uncontrolled recursion in XML catalog processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0990 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-15 15:15 修改: 2026-04-22 10:16
libxslt1.1	CVE-2025-10911	中危	1.1.35-1.2+deb13u3	libxslt: use-after-free with key data stored cross-RVT 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10911 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2025-09-25 16:15 修改: 2026-04-27 21:16
locales	CVE-2026-5435	中危	2.41-12+deb13u3	glibc: glibc: Out-of-bounds write via TSIG record processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
locales	CVE-2026-5450	中危	2.41-12+deb13u3	glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
locales	CVE-2026-5928	中危	2.41-12+deb13u3	glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
locales	CVE-2026-6238	中危	2.41-12+deb13u3	glibc: glibc: Application crash or uninitialized memory read via crafted DNS response 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
login	CVE-2026-27456	中危	1:4.16.0-2+really2.41-5	util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
login	CVE-2026-3184	中危	1:4.16.0-2+really2.41-5	util-linux: util-linux: Access control bypass due to improper hostname canonicalization 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
imagemagick-7-common	CVE-2026-53463	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via incorrect arguments in distort operation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53463 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:43
memcached	CVE-2026-47784	中危	1.6.38-1	memcached: Memcached: Information disclosure via timing side channel 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47784 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-05-20 07:16 修改: 2026-05-21 17:06
mount	CVE-2026-27456	中危	2.41-5	util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
mount	CVE-2026-3184	中危	2.41-5	util-linux: util-linux: Access control bypass due to improper hostname canonicalization 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
imagemagick-7.q16	CVE-2026-48724	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via heap buffer overwrite in Floyd-Steinberg dithering 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48724 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:42
imagemagick-7.q16	CVE-2026-48734	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via crafted MVG file leading to stack overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48734 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
imagemagick-7.q16	CVE-2026-48994	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via heap buffer over-write in MAT decoder 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48994 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
imagemagick-7.q16	CVE-2026-53463	中危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Denial of Service via incorrect arguments in distort operation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53463 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:43
libblkid1	CVE-2026-27456	中危	2.41-5	util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
libblkid1	CVE-2026-3184	中危	2.41-5	util-linux: util-linux: Access control bypass due to improper hostname canonicalization 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
libbz2-1.0	CVE-2026-42250	中危	1.0.8-6	bzip2: bzip2: Denial of Service in bzip2recover via a specially crafted file 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42250 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-05-28 14:16 修改: 2026-06-05 08:16
libc-bin	CVE-2026-5435	中危	2.41-12+deb13u3	glibc: glibc: Out-of-bounds write via TSIG record processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
perl	CVE-2025-15649	中危	5.40.1-6	IO::Uncompress::Unzip versions before 2.215 for Perl propagate uncaugh ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl	CVE-2026-7010	中危	5.40.1-6	HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-11 22:22 修改: 2026-05-12 16:48
libc-bin	CVE-2026-5450	中危	2.41-12+deb13u3	glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
libc-bin	CVE-2026-5928	中危	2.41-12+deb13u3	glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
libc-bin	CVE-2026-6238	中危	2.41-12+deb13u3	glibc: glibc: Application crash or uninitialized memory read via crafted DNS response 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
libc-l10n	CVE-2026-5435	中危	2.41-12+deb13u3	glibc: glibc: Out-of-bounds write via TSIG record processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
libc-l10n	CVE-2026-5450	中危	2.41-12+deb13u3	glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
libc-l10n	CVE-2026-5928	中危	2.41-12+deb13u3	glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
perl-base	CVE-2025-15649	中危	5.40.1-6	IO::Uncompress::Unzip versions before 2.215 for Perl propagate uncaugh ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl-base	CVE-2026-7010	中危	5.40.1-6	HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-05-11 22:22 修改: 2026-05-12 16:48
libc-l10n	CVE-2026-6238	中危	2.41-12+deb13u3	glibc: glibc: Application crash or uninitialized memory read via crafted DNS response 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
libc6	CVE-2026-5435	中危	2.41-12+deb13u3	glibc: glibc: Out-of-bounds write via TSIG record processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
libc6	CVE-2026-5450	中危	2.41-12+deb13u3	glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
libc6	CVE-2026-5928	中危	2.41-12+deb13u3	glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
libc6	CVE-2026-6238	中危	2.41-12+deb13u3	glibc: glibc: Application crash or uninitialized memory read via crafted DNS response 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
apache2-bin	CVE-2026-44119	中危	2.4.67-1~deb13u3	httpd: Apache HTTP Server: Local .htaccess authors can read files with httpd user privileges 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44119 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
perl-modules-5.40	CVE-2025-15649	中危	5.40.1-6	IO::Uncompress::Unzip versions before 2.215 for Perl propagate uncaugh ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl-modules-5.40	CVE-2026-7010	中危	5.40.1-6	HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-11 22:22 修改: 2026-05-12 16:48
apache2-bin	CVE-2026-44631	中危	2.4.67-1~deb13u3	httpd: Apache HTTP Server: Denial of Service via crafted regular expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44631 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-08 16:16 修改: 2026-06-11 04:01
libcurl3t64-gnutls	CVE-2026-1965	中危	8.14.1-2+deb13u3	curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
libcurl3t64-gnutls	CVE-2026-3783	中危	8.14.1-2+deb13u3	curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
libcurl3t64-gnutls	CVE-2026-3784	中危	8.14.1-2+deb13u3	curl: curl: Unauthorized access due to improper HTTP proxy connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
python3.13	CVE-2025-12781	中危	3.13.5-2+deb13u2	cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-01-21 20:16 修改: 2026-02-02 17:25
python3.13	CVE-2025-15366	中危	3.13.5-2+deb13u2	cpython: IMAP command injection in user-controlled commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.13	CVE-2025-15367	中危	3.13.5-2+deb13u2	cpython: POP3 command injection in user-controlled commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.13	CVE-2026-1502	中危	3.13.5-2+deb13u2	python: Python: HTTP header injection via CR/LF in proxy tunnel headers 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-04-10 18:16 修改: 2026-06-04 15:16
python3.13	CVE-2026-3276	中危	3.13.5-2+deb13u2	python: Python unicodedata: Denial of Service due to excessive CPU consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-03 16:16 修改: 2026-06-04 18:16
python3.13	CVE-2026-7774	中危	3.13.5-2+deb13u2	tarfile.data_filter could be bypassed using crafted link entries, incl ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-04 16:16 修改: 2026-06-10 19:16
python3.13	CVE-2026-8328	中危	3.13.5-2+deb13u2	The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-05-13 21:16 修改: 2026-06-10 19:16
libcurl3t64-gnutls	CVE-2026-3805	中危	8.14.1-2+deb13u3	curl: curl: Arbitrary code execution or Denial of Service via use-after-free in SMB request handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3805 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:08
libcurl3t64-gnutls	CVE-2026-4873	中危	8.14.1-2+deb13u3	curl: curl: Information disclosure due to incorrect TLS connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
python3.13-minimal	CVE-2025-12781	中危	3.13.5-2+deb13u2	cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-01-21 20:16 修改: 2026-02-02 17:25
python3.13-minimal	CVE-2025-15366	中危	3.13.5-2+deb13u2	cpython: IMAP command injection in user-controlled commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.13-minimal	CVE-2025-15367	中危	3.13.5-2+deb13u2	cpython: POP3 command injection in user-controlled commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.13-minimal	CVE-2026-1502	中危	3.13.5-2+deb13u2	python: Python: HTTP header injection via CR/LF in proxy tunnel headers 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-04-10 18:16 修改: 2026-06-04 15:16
python3.13-minimal	CVE-2026-3276	中危	3.13.5-2+deb13u2	python: Python unicodedata: Denial of Service due to excessive CPU consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-03 16:16 修改: 2026-06-04 18:16
python3.13-minimal	CVE-2026-7774	中危	3.13.5-2+deb13u2	tarfile.data_filter could be bypassed using crafted link entries, incl ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-06-04 16:16 修改: 2026-06-10 19:16
python3.13-minimal	CVE-2026-8328	中危	3.13.5-2+deb13u2	The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-05-13 21:16 修改: 2026-06-10 19:16
tar	CVE-2026-5704	中危	1.35+dfsg-3.1	tar: tar: Hidden file injection via crafted archives 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-06 16:16 修改: 2026-04-22 20:08
util-linux	CVE-2026-27456	中危	2.41-5	util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
util-linux	CVE-2026-3184	中危	2.41-5	util-linux: util-linux: Access control bypass due to improper hostname canonicalization 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
wget	CVE-2021-31879	中危	1.25.0-2	wget: authorization header disclosure on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31879 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2021-04-29 05:15 修改: 2024-11-21 06:06
zlib1g	CVE-2026-27171	中危	1:1.3.dfsg+really1.3.1-1+b1	zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-02-18 04:16 修改: 2026-03-25 21:27
gpgsm	CVE-2022-3219	低危	2.4.7-21+deb13u1+b3	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
libgssapi-krb5-2	CVE-2018-5709	低危	1.21.3-5+deb13u1	krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
libgssapi-krb5-2	CVE-2024-26458	低危	1.21.3-5+deb13u1	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
libgssapi-krb5-2	CVE-2024-26461	低危	1.21.3-5+deb13u1	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
apache2-utils	CVE-2003-1581	低危	2.4.67-1~deb13u3	httpd: Injection of arbitrary text into log files when DNS resolution is enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2003-1581 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2010-02-05 22:30 修改: 2026-04-29 01:13
apache2-utils	CVE-2007-0086	低危	2.4.67-1~deb13u3	The Apache HTTP Server, when accessed through a TCP connection with a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-0086 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2007-01-05 18:28 修改: 2026-04-23 00:35
apache2-utils	CVE-2007-1743	低危	2.4.67-1~deb13u3	suexec in Apache HTTP Server (httpd) 2.2.3 does not verify combination ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-1743 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2007-04-13 17:19 修改: 2026-04-23 00:35
apache2-utils	CVE-2007-3303	低危	2.4.67-1~deb13u3	Apache httpd 2.0.59 and 2.2.4, with the Prefork MPM module, allows loc ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-3303 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2007-06-20 22:30 修改: 2026-04-23 00:35
imagemagick	CVE-2005-0406	低危	8:7.1.1.43+dfsg1-1+deb13u9	A design flaw in image processing software that modifies JPEG images m ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2005-0406 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2005-02-14 05:00 修改: 2026-04-16 00:27
imagemagick	CVE-2008-3134	低危	8:7.1.1.43+dfsg1-1+deb13u9	GraphicsMagick/ImageMagick: multiple crash or DoS issues 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3134 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2008-07-10 23:41 修改: 2026-04-23 00:35
imagemagick	CVE-2016-8678	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Heap-buffer overflow in IsPixelMonochrome 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8678 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-02-15 21:59 修改: 2026-05-13 00:24
imagemagick	CVE-2017-11754	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Memory leak in WritePICONImage function 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11754 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-30 18:29 修改: 2025-04-20 01:37
imagemagick	CVE-2017-11755	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Memory leak in WritePICONImage function via mishandled AcquireSemaphoreInfo call 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11755 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-30 18:29 修改: 2025-04-20 01:37
libheif-plugin-dav1d	CVE-2026-3949	低危	1.19.8-1	libheif: libheif: Out-of-bounds read via local argument manipulation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3949 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-11 19:16 修改: 2026-04-29 01:00
imagemagick	CVE-2017-7275	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Memory allocation failure in AcquireMagickMemory (incomplete fix for CVE-2016-8866) 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7275 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-03-27 18:59 修改: 2026-05-13 00:24
imagemagick	CVE-2018-15607	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: CPU Exhaustion via crafted input file 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15607 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-08-21 15:29 修改: 2024-11-21 03:51
imagemagick	CVE-2023-34152	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: RCE (shell command injection) vulnerability in OpenBlob with --enable-pipes configured 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34152 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-05-30 22:15 修改: 2025-01-13 19:15
imagemagick	CVE-2025-55160	低危	8:7.1.1.43+dfsg1-1+deb13u9	imagemagick: ImageMagick: Undefined Behavior 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-55160 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-08-13 14:15 修改: 2025-08-15 19:25
imagemagick	CVE-2026-49219	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Information disclosure via incorrect filename parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49219 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
imagemagick	CVE-2026-53464	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Memory leak via invalid options to wand option parser 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53464 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:43
apache2-utils	CVE-2008-0456	低危	2.4.67-1~deb13u3	httpd: mod_negotiation CRLF injection via untrusted file names in directories with MultiViews enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-0456 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2008-01-25 01:00 修改: 2026-04-23 00:35
apt	CVE-2011-3374	低危	3.0.3	It was found that apt-key in apt, all versions, do not correctly valid ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
bash	TEMP-0841856-B18BAF	低危	5.2.37-2+b9	[Privilege escalation possible to other user than root] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libheif-plugin-libde265	CVE-2026-3949	低危	1.19.8-1	libheif: libheif: Out-of-bounds read via local argument manipulation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3949 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-11 19:16 修改: 2026-04-29 01:00
apache2-bin	CVE-2001-1534	低危	2.4.67-1~deb13u3	mod_usertrack in Apache 1.3.11 through 1.3.20 generates session ID's u ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2001-1534 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2001-12-31 05:00 修改: 2026-04-16 00:27
imagemagick-7-common	CVE-2005-0406	低危	8:7.1.1.43+dfsg1-1+deb13u9	A design flaw in image processing software that modifies JPEG images m ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2005-0406 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2005-02-14 05:00 修改: 2026-04-16 00:27
imagemagick-7-common	CVE-2008-3134	低危	8:7.1.1.43+dfsg1-1+deb13u9	GraphicsMagick/ImageMagick: multiple crash or DoS issues 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3134 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2008-07-10 23:41 修改: 2026-04-23 00:35
imagemagick-7-common	CVE-2016-8678	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Heap-buffer overflow in IsPixelMonochrome 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8678 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-02-15 21:59 修改: 2026-05-13 00:24
imagemagick-7-common	CVE-2017-11754	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Memory leak in WritePICONImage function 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11754 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-30 18:29 修改: 2025-04-20 01:37
imagemagick-7-common	CVE-2017-11755	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Memory leak in WritePICONImage function via mishandled AcquireSemaphoreInfo call 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11755 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-30 18:29 修改: 2025-04-20 01:37
imagemagick-7-common	CVE-2017-7275	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Memory allocation failure in AcquireMagickMemory (incomplete fix for CVE-2016-8866) 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7275 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-03-27 18:59 修改: 2026-05-13 00:24
imagemagick-7-common	CVE-2018-15607	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: CPU Exhaustion via crafted input file 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15607 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-08-21 15:29 修改: 2024-11-21 03:51
imagemagick-7-common	CVE-2023-34152	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: RCE (shell command injection) vulnerability in OpenBlob with --enable-pipes configured 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34152 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-05-30 22:15 修改: 2025-01-13 19:15
libheif1	CVE-2026-3949	低危	1.19.8-1	libheif: libheif: Out-of-bounds read via local argument manipulation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3949 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-11 19:16 修改: 2026-04-29 01:00
libjansson4	CVE-2020-36325	低危	2.14-2+b3	jansson: out-of-bounds read in json_loads() due to a parsing error 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36325 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2021-04-26 18:15 修改: 2024-11-21 05:29
libjbig0	CVE-2017-9937	低危	2.1-6.1+b2	libtiff: memory malloc failure in tif_jbig.c could cause DOS. 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9937 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-06-26 12:29 修改: 2026-05-13 00:24
imagemagick-7-common	CVE-2025-55160	低危	8:7.1.1.43+dfsg1-1+deb13u9	imagemagick: ImageMagick: Undefined Behavior 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-55160 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-08-13 14:15 修改: 2025-08-15 19:25
libk5crypto3	CVE-2018-5709	低危	1.21.3-5+deb13u1	krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
libk5crypto3	CVE-2024-26458	低危	1.21.3-5+deb13u1	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
libk5crypto3	CVE-2024-26461	低危	1.21.3-5+deb13u1	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
imagemagick-7-common	CVE-2026-49219	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Information disclosure via incorrect filename parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49219 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libkrb5-3	CVE-2018-5709	低危	1.21.3-5+deb13u1	krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
libkrb5-3	CVE-2024-26458	低危	1.21.3-5+deb13u1	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
libkrb5-3	CVE-2024-26461	低危	1.21.3-5+deb13u1	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
imagemagick-7-common	CVE-2026-53464	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Memory leak via invalid options to wand option parser 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53464 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:43
libkrb5support0	CVE-2018-5709	低危	1.21.3-5+deb13u1	krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
libkrb5support0	CVE-2024-26458	低危	1.21.3-5+deb13u1	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
libkrb5support0	CVE-2024-26461	低危	1.21.3-5+deb13u1	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
apache2-bin	CVE-2003-1307	低危	2.4.67-1~deb13u3	The mod_php module for the Apache HTTP Server allows local users with ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2003-1307 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2003-12-31 05:00 修改: 2026-04-16 00:27
bsdutils	CVE-2022-0563	低危	1:2.41-5	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
liblastlog2-2	CVE-2022-0563	低危	2.41-5	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
liblastlog2-2	CVE-2025-14104	低危	2.41-5	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
liblcms2-2	CVE-2025-29070	低危	2.16-2+deb13u2	A heap buffer overflow vulnerability has been identified in thesmooth2 ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29070 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-04-01 21:15 修改: 2026-04-15 00:35
libldap2	CVE-2015-3276	低危	2.6.10+dfsg-1	openldap: incorrect multi-keyword mode cipherstring parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2015-12-07 20:59 修改: 2026-05-06 22:30
libldap2	CVE-2017-14159	低危	2.6.10+dfsg-1	openldap: Privilege escalation via PID file manipulation 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-09-05 18:29 修改: 2026-05-13 00:24
libldap2	CVE-2017-17740	低危	2.6.10+dfsg-1	openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-12-18 06:29 修改: 2025-04-20 01:37
libldap2	CVE-2020-15719	低危	2.6.10+dfsg-1	openldap: Certificate validation incorrectly matches name against CN-ID 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2020-07-14 14:15 修改: 2024-11-21 05:06
libldap2	CVE-2026-22185	低危	2.6.10+dfsg-1	OpenLDAP: OpenLDAP LMDB: Denial of Service and Information Disclosure via Heap Buffer Underflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22185 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-07 21:16 修改: 2026-04-15 00:35
libllvm19	CVE-2024-7883	低危	1:19.1.7-3+b1	clang: CMSE secure state may leak from stack to floating-point registers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7883 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2024-10-31 17:15 修改: 2025-12-23 15:30
bsdutils	CVE-2025-14104	低危	1:2.41-5	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
catdoc	CVE-2018-20451	低危	1:0.95-6	The process_file function in reader.c in libdoc through 2017-10-23 has ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20451 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-12-25 17:29 修改: 2024-11-21 04:01
imagemagick-7.q16	CVE-2005-0406	低危	8:7.1.1.43+dfsg1-1+deb13u9	A design flaw in image processing software that modifies JPEG images m ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2005-0406 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2005-02-14 05:00 修改: 2026-04-16 00:27
imagemagick-7.q16	CVE-2008-3134	低危	8:7.1.1.43+dfsg1-1+deb13u9	GraphicsMagick/ImageMagick: multiple crash or DoS issues 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3134 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2008-07-10 23:41 修改: 2026-04-23 00:35
imagemagick-7.q16	CVE-2016-8678	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Heap-buffer overflow in IsPixelMonochrome 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8678 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-02-15 21:59 修改: 2026-05-13 00:24
libmagickcore-7.q16-10	CVE-2005-0406	低危	8:7.1.1.43+dfsg1-1+deb13u9	A design flaw in image processing software that modifies JPEG images m ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2005-0406 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2005-02-14 05:00 修改: 2026-04-16 00:27
libmagickcore-7.q16-10	CVE-2008-3134	低危	8:7.1.1.43+dfsg1-1+deb13u9	GraphicsMagick/ImageMagick: multiple crash or DoS issues 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3134 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2008-07-10 23:41 修改: 2026-04-23 00:35
libmagickcore-7.q16-10	CVE-2016-8678	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Heap-buffer overflow in IsPixelMonochrome 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8678 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-02-15 21:59 修改: 2026-05-13 00:24
libmagickcore-7.q16-10	CVE-2017-11754	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Memory leak in WritePICONImage function 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11754 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-30 18:29 修改: 2025-04-20 01:37
libmagickcore-7.q16-10	CVE-2017-11755	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Memory leak in WritePICONImage function via mishandled AcquireSemaphoreInfo call 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11755 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-30 18:29 修改: 2025-04-20 01:37
libmagickcore-7.q16-10	CVE-2017-7275	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Memory allocation failure in AcquireMagickMemory (incomplete fix for CVE-2016-8866) 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7275 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-03-27 18:59 修改: 2026-05-13 00:24
libmagickcore-7.q16-10	CVE-2018-15607	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: CPU Exhaustion via crafted input file 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15607 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-08-21 15:29 修改: 2024-11-21 03:51
libmagickcore-7.q16-10	CVE-2023-34152	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: RCE (shell command injection) vulnerability in OpenBlob with --enable-pipes configured 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34152 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-05-30 22:15 修改: 2025-01-13 19:15
libmagickcore-7.q16-10	CVE-2025-55160	低危	8:7.1.1.43+dfsg1-1+deb13u9	imagemagick: ImageMagick: Undefined Behavior 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-55160 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-08-13 14:15 修改: 2025-08-15 19:25
libmagickcore-7.q16-10	CVE-2026-49219	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Information disclosure via incorrect filename parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49219 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libmagickcore-7.q16-10	CVE-2026-53464	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Memory leak via invalid options to wand option parser 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53464 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:43
imagemagick-7.q16	CVE-2017-11754	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Memory leak in WritePICONImage function 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11754 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-30 18:29 修改: 2025-04-20 01:37
imagemagick-7.q16	CVE-2017-11755	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Memory leak in WritePICONImage function via mishandled AcquireSemaphoreInfo call 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11755 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-30 18:29 修改: 2025-04-20 01:37
imagemagick-7.q16	CVE-2017-7275	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Memory allocation failure in AcquireMagickMemory (incomplete fix for CVE-2016-8866) 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7275 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-03-27 18:59 修改: 2026-05-13 00:24
imagemagick-7.q16	CVE-2018-15607	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: CPU Exhaustion via crafted input file 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15607 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-08-21 15:29 修改: 2024-11-21 03:51
libmagickwand-7.q16-10	CVE-2005-0406	低危	8:7.1.1.43+dfsg1-1+deb13u9	A design flaw in image processing software that modifies JPEG images m ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2005-0406 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2005-02-14 05:00 修改: 2026-04-16 00:27
libmagickwand-7.q16-10	CVE-2008-3134	低危	8:7.1.1.43+dfsg1-1+deb13u9	GraphicsMagick/ImageMagick: multiple crash or DoS issues 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3134 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2008-07-10 23:41 修改: 2026-04-23 00:35
libmagickwand-7.q16-10	CVE-2016-8678	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Heap-buffer overflow in IsPixelMonochrome 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8678 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-02-15 21:59 修改: 2026-05-13 00:24
libmagickwand-7.q16-10	CVE-2017-11754	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Memory leak in WritePICONImage function 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11754 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-30 18:29 修改: 2025-04-20 01:37
libmagickwand-7.q16-10	CVE-2017-11755	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Memory leak in WritePICONImage function via mishandled AcquireSemaphoreInfo call 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11755 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-30 18:29 修改: 2025-04-20 01:37
libmagickwand-7.q16-10	CVE-2017-7275	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: Memory allocation failure in AcquireMagickMemory (incomplete fix for CVE-2016-8866) 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7275 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-03-27 18:59 修改: 2026-05-13 00:24
libmagickwand-7.q16-10	CVE-2018-15607	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: CPU Exhaustion via crafted input file 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15607 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-08-21 15:29 修改: 2024-11-21 03:51
libmagickwand-7.q16-10	CVE-2023-34152	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: RCE (shell command injection) vulnerability in OpenBlob with --enable-pipes configured 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34152 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-05-30 22:15 修改: 2025-01-13 19:15
libmagickwand-7.q16-10	CVE-2025-55160	低危	8:7.1.1.43+dfsg1-1+deb13u9	imagemagick: ImageMagick: Undefined Behavior 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-55160 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-08-13 14:15 修改: 2025-08-15 19:25
libmagickwand-7.q16-10	CVE-2026-49219	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Information disclosure via incorrect filename parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49219 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libmagickwand-7.q16-10	CVE-2026-53464	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Memory leak via invalid options to wand option parser 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53464 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:43
imagemagick-7.q16	CVE-2023-34152	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: RCE (shell command injection) vulnerability in OpenBlob with --enable-pipes configured 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34152 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-05-30 22:15 修改: 2025-01-13 19:15
imagemagick-7.q16	CVE-2025-55160	低危	8:7.1.1.43+dfsg1-1+deb13u9	imagemagick: ImageMagick: Undefined Behavior 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-55160 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-08-13 14:15 修改: 2025-08-15 19:25
libmount1	CVE-2022-0563	低危	2.41-5	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
libmount1	CVE-2025-14104	低危	2.41-5	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
imagemagick-7.q16	CVE-2026-49219	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Information disclosure via incorrect filename parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49219 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libncursesw6	CVE-2025-6141	低危	6.5+20250216-2	gnu-ncurses: ncurses Stack Buffer Overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
libnss3	CVE-2017-11695	低危	2:3.110-1+deb13u2	nss: Heap-buffer-overflow in alloc_segs 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11695 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-12-27 19:29 修改: 2026-05-13 00:24
libnss3	CVE-2017-11696	低危	2:3.110-1+deb13u2	nss: Heap-buffer-overflow in __hash_open 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11696 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-12-27 19:29 修改: 2026-05-13 00:24
libnss3	CVE-2017-11697	低危	2:3.110-1+deb13u2	nss: Floating Point Exception in __hash_open 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11697 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-12-27 19:29 修改: 2026-05-13 00:24
libnss3	CVE-2017-11698	低危	2:3.110-1+deb13u2	nss: Heap-buffer-overflow in __get_page 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11698 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-12-27 19:29 修改: 2026-05-13 00:24
imagemagick-7.q16	CVE-2026-53464	低危	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick: ImageMagick: Memory leak via invalid options to wand option parser 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53464 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:43
libapt-pkg7.0	CVE-2011-3374	低危	3.0.3	It was found that apt-key in apt, all versions, do not correctly valid ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
libopenjp2-7	CVE-2016-10505	低危	2.5.3-2.1~deb13u2	openjpeg: NULL pointer dereference in imagetopnm function in convert.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10505 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-08-30 09:29 修改: 2026-05-13 00:24
libopenjp2-7	CVE-2016-9113	低危	2.5.3-2.1~deb13u2	openjpeg2: Multiple security issues 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9113 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2016-10-30 22:59 修改: 2026-05-06 22:30
libopenjp2-7	CVE-2016-9114	低危	2.5.3-2.1~deb13u2	openjpeg2: Multiple security issues 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9114 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2016-10-30 22:59 修改: 2026-05-06 22:30
libopenjp2-7	CVE-2016-9115	低危	2.5.3-2.1~deb13u2	openjpeg2: Multiple security issues 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9115 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2016-10-30 22:59 修改: 2026-05-06 22:30
libopenjp2-7	CVE-2016-9116	低危	2.5.3-2.1~deb13u2	openjpeg2: Multiple security issues 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9116 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2016-10-30 22:59 修改: 2026-05-06 22:30
libopenjp2-7	CVE-2016-9117	低危	2.5.3-2.1~deb13u2	openjpeg2: Multiple security issues 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9117 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2016-10-30 22:59 修改: 2026-05-06 22:30
libopenjp2-7	CVE-2016-9580	低危	2.5.3-2.1~deb13u2	openjpeg2: Integer overflow in tiftoimage causes heap buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9580 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-08-01 16:29 修改: 2024-11-21 03:01
libopenjp2-7	CVE-2016-9581	低危	2.5.3-2.1~deb13u2	openjpeg2: Infinite loop in tiftoimage resulting into heap buffer overflow in convert_32s_C1P1 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9581 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-08-01 14:29 修改: 2024-11-21 03:01
libopenjp2-7	CVE-2018-16376	低危	2.5.3-2.1~deb13u2	openjpeg: Heap-based buffer overflow in function t2_encode_packet in src/lib/openmj2/t2.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16376 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-09-03 00:29 修改: 2024-11-21 03:52
libopenjp2-7	CVE-2019-6988	低危	2.5.3-2.1~deb13u2	openjpeg: DoS via memory exhaustion in opj_decompress 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6988 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-01-28 16:29 修改: 2024-11-21 04:47
libopenjp2-7	CVE-2023-39327	低危	2.5.3-2.1~deb13u2	openjpeg: Malicious files can cause the program to enter a large loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39327 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2024-07-13 03:15 修改: 2026-03-09 19:15
libarchive13t64	CVE-2023-30571	低危	3.7.4-4+deb13u1	libarchive: Race condition in multi-threaded use of archive_write_disk_header() on posix based systems 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-30571 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-05-29 20:15 修改: 2025-01-14 17:15
libarchive13t64	CVE-2025-25724	低危	3.7.4-4+deb13u1	libarchive: Buffer Overflow vulnerability in libarchive 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-25724 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-03-02 02:15 修改: 2025-07-17 15:56
libarchive13t64	CVE-2025-60753	低危	3.7.4-4+deb13u1	libarchive: bsdtar hangs and OOMs with zero-length pattern matches 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-60753 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-11-05 16:15 修改: 2026-02-04 21:19
libarchive13t64	CVE-2026-5745	低危	3.7.4-4+deb13u1	libarchive: A NULL pointer dereference vulnerability exists in the ACL parser of libarchive 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5745 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-07 16:16 修改: 2026-05-03 15:15
catdoc	CVE-2018-20453	低危	1:0.95-6	The getlong function in numutils.c in libdoc through 2017-10-23 has a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20453 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-12-25 17:29 修改: 2024-11-21 04:01
catdoc	CVE-2019-7156	低危	1:0.95-6	In libdoc through 2019-01-28, calcFileBlockOffset in ole.c allows divi ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-7156 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-01-29 08:29 修改: 2024-11-21 04:47
libblkid1	CVE-2022-0563	低危	2.41-5	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
libblkid1	CVE-2025-14104	低危	2.41-5	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
libperl5.40	CVE-2011-4116	低危	5.40.1-6	perl: File:: Temp insecure temporary file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
libpixman-1-0	CVE-2023-37769	低危	0.44.0-3	stress-test master commit e4c878 was discovered to contain a FPE vulne ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37769 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-07-17 20:15 修改: 2024-11-21 08:12
libpng16-16t64	CVE-2021-4214	低危	1.6.48-1+deb13u5	libpng: hardcoded value leads to heap-overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4214 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2022-08-24 16:15 修改: 2024-11-21 06:37
libpng16-16t64	CVE-2026-3713	低危	1.6.48-1+deb13u5	libpng: libpng: Heap-based buffer overflow in pnm2png allows information disclosure and denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3713 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-08 06:16 修改: 2026-04-29 01:00
libpoppler147	CVE-2013-4472	低危	25.03.0-5+deb13u3	xpdf: insecure temporary file 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4472 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2014-04-22 14:23 修改: 2026-05-06 22:30
libpoppler147	CVE-2017-2814	低危	25.03.0-5+deb13u3	poppler: Heap-buffer overflow in DCTStream::readScan() 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2814 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-12 17:29 修改: 2025-04-20 01:37
libpoppler147	CVE-2017-2818	低危	25.03.0-5+deb13u3	poppler: Heap-buffer overflow in the image rendering functionality 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2818 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-12 17:29 修改: 2025-04-20 01:37
libpoppler147	CVE-2017-2820	低危	25.03.0-5+deb13u3	poppler: Integer overflow in the JPEG 2000 image parsing functionality 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2820 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-12 17:29 修改: 2025-04-20 01:37
libpoppler147	CVE-2017-9083	低危	25.03.0-5+deb13u3	poppler: Null pointer dereference in the JPXStream::readUByte function 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9083 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-05-19 16:29 修改: 2026-05-13 00:24
libpoppler147	CVE-2019-9543	低危	25.03.0-5+deb13u3	poppler: recursive function call in JBIG2Stream::readGenericBitmap() in JBIG2Stream.cc causing denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9543 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-03-01 19:29 修改: 2024-11-21 04:51
libpoppler147	CVE-2019-9545	低危	25.03.0-5+deb13u3	poppler: recursive function call in JBIG2Stream::readTextRegion() in JBIG2Stream.cc causing denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9545 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-03-01 19:29 修改: 2024-11-21 04:51
libpoppler147	CVE-2022-24106	低危	25.03.0-5+deb13u3	In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24106 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2022-08-30 04:15 修改: 2024-11-21 06:49
catdoc	CVE-2019-7233	低危	1:0.95-6	In libdoc through 2019-01-28, doc2text in catdoc.c has a NULL pointer ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-7233 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-01-30 21:29 修改: 2024-11-21 04:47
catdoc	CVE-2023-31979	低危	1:0.95-6	Catdoc v0.95 was discovered to contain a global buffer overflow via th ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31979 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-05-09 14:15 修改: 2026-02-18 14:42
catdoc	CVE-2023-41633	低危	1:0.95-6	Catdoc v0.95 was discovered to contain a NULL pointer dereference via ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-41633 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-09-01 19:15 修改: 2026-02-18 14:42
catdoc	CVE-2023-46345	低危	1:0.95-6	Catdoc v0.95 was discovered to contain a NULL pointer dereference via ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46345 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-10-26 00:15 修改: 2024-11-21 08:28
coreutils	CVE-2017-18018	低危	9.7-3	coreutils: race condition vulnerability in chown and chgrp 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2018-01-04 04:29 修改: 2025-06-09 16:15
libc-bin	CVE-2010-4756	低危	2.41-12+deb13u3	glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
libc-bin	CVE-2018-20796	低危	2.41-12+deb13u3	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
libc-bin	CVE-2019-1010022	低危	2.41-12+deb13u3	glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc-bin	CVE-2019-1010023	低危	2.41-12+deb13u3	glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libpython3.13-minimal	CVE-2026-3479	低危	3.13.5-2+deb13u2	python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-03-18 19:16 修改: 2026-04-07 18:16
libc-bin	CVE-2019-1010024	低危	2.41-12+deb13u3	glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc-bin	CVE-2019-1010025	低危	2.41-12+deb13u3	glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc-bin	CVE-2019-9192	低危	2.41-12+deb13u3	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
coreutils	CVE-2025-5278	低危	9.7-3	coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5278 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2025-05-27 21:15 修改: 2026-05-19 17:16
apache2-bin	CVE-2003-1580	低危	2.4.67-1~deb13u3	The Apache HTTP Server 2.0.44, when DNS resolution is enabled for clie ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2003-1580 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2010-02-05 22:30 修改: 2026-04-29 01:13
apache2-bin	CVE-2003-1581	低危	2.4.67-1~deb13u3	httpd: Injection of arbitrary text into log files when DNS resolution is enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2003-1581 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2010-02-05 22:30 修改: 2026-04-29 01:13
apache2-data	CVE-2001-1534	低危	2.4.67-1~deb13u3	mod_usertrack in Apache 1.3.11 through 1.3.20 generates session ID's u ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2001-1534 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2001-12-31 05:00 修改: 2026-04-16 00:27
libc-l10n	CVE-2010-4756	低危	2.41-12+deb13u3	glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
libc-l10n	CVE-2018-20796	低危	2.41-12+deb13u3	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
libpython3.13-stdlib	CVE-2026-3479	低危	3.13.5-2+deb13u2	python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-03-18 19:16 修改: 2026-04-07 18:16
libc-l10n	CVE-2019-1010022	低危	2.41-12+deb13u3	glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc-l10n	CVE-2019-1010023	低危	2.41-12+deb13u3	glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc-l10n	CVE-2019-1010024	低危	2.41-12+deb13u3	glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc-l10n	CVE-2019-1010025	低危	2.41-12+deb13u3	glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc-l10n	CVE-2019-9192	低危	2.41-12+deb13u3	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
apache2-data	CVE-2003-1307	低危	2.4.67-1~deb13u3	The mod_php module for the Apache HTTP Server allows local users with ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2003-1307 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2003-12-31 05:00 修改: 2026-04-16 00:27
libraw23t64	CVE-2020-24890	低危	0.21.4-2	libraw: null pointer dereference in parse_tiff_ifd in src/metadata/tiff.cpp 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24890 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2020-09-16 15:15 修改: 2024-11-21 05:16
apache2-data	CVE-2003-1580	低危	2.4.67-1~deb13u3	The Apache HTTP Server 2.0.44, when DNS resolution is enabled for clie ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2003-1580 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2010-02-05 22:30 修改: 2026-04-29 01:13
apache2-data	CVE-2003-1581	低危	2.4.67-1~deb13u3	httpd: Injection of arbitrary text into log files when DNS resolution is enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2003-1581 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2010-02-05 22:30 修改: 2026-04-29 01:13
libsmartcols1	CVE-2022-0563	低危	2.41-5	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
libsmartcols1	CVE-2025-14104	低危	2.41-5	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
apache2-data	CVE-2007-0086	低危	2.4.67-1~deb13u3	The Apache HTTP Server, when accessed through a TCP connection with a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-0086 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2007-01-05 18:28 修改: 2026-04-23 00:35
libc6	CVE-2010-4756	低危	2.41-12+deb13u3	glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
libsqlite3-0	CVE-2021-45346	低危	3.46.1-7+deb13u1	sqlite: crafted SQL query allows a malicious user to obtain sensitive information 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45346 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2022-02-14 19:15 修改: 2024-11-21 06:32
libsqlite3-0	CVE-2025-70873	低危	3.46.1-7+deb13u1	sqlite: SQLite: Information Disclosure via Crafted ZIP File 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-70873 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-03-12 19:16 修改: 2026-04-16 21:15
libc6	CVE-2018-20796	低危	2.41-12+deb13u3	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
libsystemd0	CVE-2013-4392	低危	257.13-1~deb13u1	systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
libsystemd0	CVE-2023-31437	低危	257.13-1~deb13u1	An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libsystemd0	CVE-2023-31438	低危	257.13-1~deb13u1	An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libsystemd0	CVE-2023-31439	低危	257.13-1~deb13u1	An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libsystemd0	CVE-2026-40228	低危	257.13-1~deb13u1	systemd: systemd-journald: Unintended output to user terminals via logger command 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
libtasn1-6	CVE-2025-13151	低危	4.20.0-2	libtasn1: libtasn1: Denial of Service via stack-based buffer overflow in asn1_expend_octet_string 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13151 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-07 22:15 修改: 2026-02-02 19:27
libtiff6	CVE-2017-16232	低危	4.7.0-3+deb13u2	libtiff: Memory leaks in tif_open.c, tif_lzw.c, and tif_aux.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16232 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-03-21 15:59 修改: 2024-11-21 03:16
libtiff6	CVE-2018-10126	低危	4.7.0-3+deb13u2	libtiff: NULL pointer dereference in the jpeg_fdct_16x16 function in jfdctint.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10126 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-04-21 21:29 修改: 2024-11-21 03:40
libtiff6	CVE-2022-1210	低危	4.7.0-3+deb13u2	tiff: Malicious file leads to a denial of service in TIFF File Handler 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1210 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2022-04-03 09:15 修改: 2024-11-21 06:40
libtiff6	CVE-2025-61143	低危	4.7.0-3+deb13u2	libtiff: libtiff: Denial of Service via NULL pointer dereference in tif_open.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61143 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-02-23 19:22 修改: 2026-02-25 15:20
libtiff6	CVE-2025-61144	低危	4.7.0-3+deb13u2	libtiff: libtiff: Denial of Service via buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61144 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-02-23 19:22 修改: 2026-02-25 15:20
libtiff6	CVE-2025-61145	低危	4.7.0-3+deb13u2	libtiff: libtiff: Denial of service via double free in tiffcrop.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61145 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-02-23 19:22 修改: 2026-02-25 15:20
libtiff6	CVE-2025-8176	低危	4.7.0-3+deb13u2	libtiff: LibTIFF Use-After-Free Vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8176 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-07-26 04:16 修改: 2026-04-29 01:00
libtiff6	CVE-2025-8177	低危	4.7.0-3+deb13u2	libtiff: LibTIFF Buffer Overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8177 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-07-26 04:16 修改: 2025-09-11 16:57
libtiff6	CVE-2025-8534	低危	4.7.0-3+deb13u2	libtiff: Libtiff Null Pointer Dereference Vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8534 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-08-05 00:15 修改: 2026-04-29 01:00
libc6	CVE-2019-1010022	低危	2.41-12+deb13u3	glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libtinfo6	CVE-2025-6141	低危	6.5+20250216-2	gnu-ncurses: ncurses Stack Buffer Overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
libudev1	CVE-2013-4392	低危	257.13-1~deb13u1	systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
libudev1	CVE-2023-31437	低危	257.13-1~deb13u1	An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libudev1	CVE-2023-31438	低危	257.13-1~deb13u1	An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libudev1	CVE-2023-31439	低危	257.13-1~deb13u1	An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libudev1	CVE-2026-40228	低危	257.13-1~deb13u1	systemd: systemd-journald: Unintended output to user terminals via logger command 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
libc6	CVE-2019-1010023	低危	2.41-12+deb13u3	glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc6	CVE-2019-1010024	低危	2.41-12+deb13u3	glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libuuid1	CVE-2022-0563	低危	2.41-5	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
libuuid1	CVE-2025-14104	低危	2.41-5	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
libc6	CVE-2019-1010025	低危	2.41-12+deb13u3	glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libxml2	CVE-2025-8732	低危	2.12.7+dfsg+really2.9.14-2.1+deb13u2	libxml2: libxml2: Uncontrolled Recursion Vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8732 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-08-08 17:15 修改: 2026-06-02 14:16
libxml2	CVE-2026-0989	低危	2.12.7+dfsg+really2.9.14-2.1+deb13u2	libxml2: Unbounded RelaxNG Include Recursion Leading to Stack Overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0989 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-15 15:15 修改: 2026-04-22 10:16
libxml2	CVE-2026-0992	低危	2.12.7+dfsg+really2.9.14-2.1+deb13u2	libxml2: libxml2: Denial of Service via crafted XML catalogs 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0992 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-15 15:15 修改: 2026-04-22 10:16
libxml2	CVE-2026-1757	低危	2.12.7+dfsg+really2.9.14-2.1+deb13u2	libxml2: Memory Leak Leading to Local Denial of Service in xmllint Interactive Shell 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1757 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-02-02 13:15 修改: 2026-04-22 10:16
libc6	CVE-2019-9192	低危	2.41-12+deb13u3	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
libxslt1.1	CVE-2015-9019	低危	1.1.35-1.2+deb13u3	libxslt: math.random() in xslt uses unseeded randomness 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-9019 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2017-04-05 21:59 修改: 2026-05-13 00:24
libxslt1.1	CVE-2025-11731	低危	1.1.35-1.2+deb13u3	libxslt: Type Confusion in exsltFuncResultCompfunction of libxslt 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11731 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2025-10-14 06:15 修改: 2026-04-27 21:16
libcairo2	CVE-2017-7475	低危	1.18.4-1+b1	cairo: NULL pointer dereference with a crafted font file 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-05-19 20:29 修改: 2026-05-13 00:24
libcairo2	CVE-2018-18064	低危	1.18.4-1+b1	cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-10-08 18:29 修改: 2024-11-21 03:55
libcairo2	CVE-2025-50422	低危	1.18.4-1+b1	poppler: Poppler crash on malformed input 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-50422 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-08-04 17:15 修改: 2026-04-15 00:35
apache2-data	CVE-2007-1743	低危	2.4.67-1~deb13u3	suexec in Apache HTTP Server (httpd) 2.2.3 does not verify combination ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-1743 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2007-04-13 17:19 修改: 2026-04-23 00:35
locales	CVE-2010-4756	低危	2.41-12+deb13u3	glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
locales	CVE-2018-20796	低危	2.41-12+deb13u3	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
locales	CVE-2019-1010022	低危	2.41-12+deb13u3	glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
locales	CVE-2019-1010023	低危	2.41-12+deb13u3	glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
locales	CVE-2019-1010024	低危	2.41-12+deb13u3	glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
locales	CVE-2019-1010025	低危	2.41-12+deb13u3	glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
locales	CVE-2019-9192	低危	2.41-12+deb13u3	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
apache2-data	CVE-2007-3303	低危	2.4.67-1~deb13u3	Apache httpd 2.0.59 and 2.2.4, with the Prefork MPM module, allows loc ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-3303 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2007-06-20 22:30 修改: 2026-04-23 00:35
apache2-data	CVE-2008-0456	低危	2.4.67-1~deb13u3	httpd: mod_negotiation CRLF injection via untrusted file names in directories with MultiViews enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-0456 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2008-01-25 01:00 修改: 2026-04-23 00:35
login	CVE-2022-0563	低危	1:4.16.0-2+really2.41-5	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
login	CVE-2025-14104	低危	1:4.16.0-2+really2.41-5	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
login.defs	CVE-2007-5686	低危	1:4.17.4-2	initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
login.defs	CVE-2024-56433	低危	1:4.17.4-2	shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
login.defs	TEMP-0628843-DBAD28	低危	1:4.17.4-2	[more related to CVE-2005-4890] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
apache2-bin	CVE-2007-0086	低危	2.4.67-1~deb13u3	The Apache HTTP Server, when accessed through a TCP connection with a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-0086 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2007-01-05 18:28 修改: 2026-04-23 00:35
curl	CVE-2025-10966	低危	8.14.1-2+deb13u3	curl: Curl missing SFTP host verification with wolfSSH backend 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-11-07 08:15 修改: 2026-06-02 14:16
curl	CVE-2025-14017	低危	8.14.1-2+deb13u3	curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
curl	CVE-2025-14524	低危	8.14.1-2+deb13u3	curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
mount	CVE-2022-0563	低危	2.41-5	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
mount	CVE-2025-14104	低危	2.41-5	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
curl	CVE-2025-14819	低危	8.14.1-2+deb13u3	curl: libcurl: Improper certificate validation due to cached TLS settings reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:51
ncurses-base	CVE-2025-6141	低危	6.5+20250216-2	gnu-ncurses: ncurses Stack Buffer Overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
curl	CVE-2025-15079	低危	8.14.1-2+deb13u3	curl: Host verification bypass during SSH transfers 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:50
ncurses-bin	CVE-2025-6141	低危	6.5+20250216-2	gnu-ncurses: ncurses Stack Buffer Overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
openssh-client	CVE-2007-2243	低危	1:10.0p1-7+deb13u4	OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabl ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2243 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2007-04-25 16:19 修改: 2026-04-23 00:35
openssh-client	CVE-2007-2768	低危	1:10.0p1-7+deb13u4	OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2768 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2007-05-21 20:30 修改: 2026-04-23 00:35
openssh-client	CVE-2008-3234	低危	1:10.0p1-7+deb13u4	sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapsh ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3234 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2008-07-18 16:41 修改: 2026-04-23 00:35
openssh-client	CVE-2016-20012	低危	1:10.0p1-7+deb13u4	openssh: Public key information leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20012 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2021-09-15 20:15 修改: 2026-05-29 16:16
openssh-client	CVE-2018-15919	低危	1:10.0p1-7+deb13u4	openssh: User enumeration via malformed packets in authentication requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15919 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2018-08-28 08:29 修改: 2025-12-18 12:15
openssh-client	CVE-2019-6110	低危	1:10.0p1-7+deb13u4	openssh: Acceptance and display of arbitrary stderr allows for spoofing of scp client output 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6110 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2019-01-31 18:29 修改: 2025-12-18 15:15
openssh-client	CVE-2020-14145	低危	1:10.0p1-7+deb13u4	openssh: Observable discrepancy leading to an information leak in the algorithm negotiation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14145 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2020-06-29 18:15 修改: 2025-12-18 15:15
openssh-client	CVE-2020-15778	低危	1:10.0p1-7+deb13u4	openssh: scp allows command injection when using backtick characters in the destination argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15778 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2020-07-24 14:15 修改: 2025-07-28 18:12
passwd	CVE-2007-5686	低危	1:4.17.4-2	initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
passwd	CVE-2024-56433	低危	1:4.17.4-2	shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
passwd	TEMP-0628843-DBAD28	低危	1:4.17.4-2	[more related to CVE-2005-4890] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
patch	CVE-2010-4651	低危	2.8-2	patch: directory traversal flaw allows for arbitrary file creation 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4651 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2011-03-11 22:55 修改: 2026-04-29 01:13
patch	CVE-2018-6951	低危	2.8-2	patch: NULL pointer dereference in pch.c:intuit_diff_type() causes a crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6951 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2018-02-13 19:29 修改: 2024-11-21 04:11
patch	CVE-2018-6952	低危	2.8-2	patch: Double free of memory in pch.c:another_hunk() causes a crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6952 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2018-02-13 19:29 修改: 2024-11-21 04:11
patch	CVE-2021-45261	低危	2.8-2	patch: Invalid Pointer via another_hunk function 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45261 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2021-12-22 18:15 修改: 2024-11-21 06:32
curl	CVE-2025-15224	低危	8.14.1-2+deb13u3	curl: libssh key passphrase bypass without agent set 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:47
apache2-bin	CVE-2007-1743	低危	2.4.67-1~deb13u3	suexec in Apache HTTP Server (httpd) 2.2.3 does not verify combination ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-1743 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2007-04-13 17:19 修改: 2026-04-23 00:35
libcurl3t64-gnutls	CVE-2025-10966	低危	8.14.1-2+deb13u3	curl: Curl missing SFTP host verification with wolfSSH backend 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-11-07 08:15 修改: 2026-06-02 14:16
libcurl3t64-gnutls	CVE-2025-14017	低危	8.14.1-2+deb13u3	curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
libcurl3t64-gnutls	CVE-2025-14524	低危	8.14.1-2+deb13u3	curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
libcurl3t64-gnutls	CVE-2025-14819	低危	8.14.1-2+deb13u3	curl: libcurl: Improper certificate validation due to cached TLS settings reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:51
libcurl3t64-gnutls	CVE-2025-15079	低危	8.14.1-2+deb13u3	curl: Host verification bypass during SSH transfers 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:50
libcurl3t64-gnutls	CVE-2025-15224	低危	8.14.1-2+deb13u3	curl: libssh key passphrase bypass without agent set 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:47
perl	CVE-2011-4116	低危	5.40.1-6	perl: File:: Temp insecure temporary file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
apache2-bin	CVE-2007-3303	低危	2.4.67-1~deb13u3	Apache httpd 2.0.59 and 2.2.4, with the Prefork MPM module, allows loc ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-3303 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2007-06-20 22:30 修改: 2026-04-23 00:35
dirmngr	CVE-2022-3219	低危	2.4.7-21+deb13u1+b3	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
git	CVE-2018-1000021	低危	1:2.47.3-0+deb13u1	git: client prints server-sent ANSI escape codes to the terminal, allowing for unverified messages to potentially execute arbitrary commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000021 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2018-02-09 23:29 修改: 2024-11-21 03:39
git	CVE-2022-24975	低危	1:2.47.3-0+deb13u1	git: The --mirror option for git leaks secret for deleted content, aka the "GitBleed" 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24975 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2022-02-11 20:15 修改: 2024-11-21 06:51
git	CVE-2024-52005	低危	1:2.47.3-0+deb13u1	git: The sideband payload is passed unfiltered to the terminal in git 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52005 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2025-01-15 18:15 修改: 2025-12-18 16:00
git-man	CVE-2018-1000021	低危	1:2.47.3-0+deb13u1	git: client prints server-sent ANSI escape codes to the terminal, allowing for unverified messages to potentially execute arbitrary commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000021 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2018-02-09 23:29 修改: 2024-11-21 03:39
git-man	CVE-2022-24975	低危	1:2.47.3-0+deb13u1	git: The --mirror option for git leaks secret for deleted content, aka the "GitBleed" 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24975 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2022-02-11 20:15 修改: 2024-11-21 06:51
git-man	CVE-2024-52005	低危	1:2.47.3-0+deb13u1	git: The sideband payload is passed unfiltered to the terminal in git 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52005 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2025-01-15 18:15 修改: 2025-12-18 16:00
perl-base	CVE-2011-4116	低危	5.40.1-6	perl: File:: Temp insecure temporary file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
apache2-bin	CVE-2008-0456	低危	2.4.67-1~deb13u3	httpd: mod_negotiation CRLF injection via untrusted file names in directories with MultiViews enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-0456 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2008-01-25 01:00 修改: 2026-04-23 00:35
apache2	CVE-2007-0086	低危	2.4.67-1~deb13u3	The Apache HTTP Server, when accessed through a TCP connection with a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-0086 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2007-01-05 18:28 修改: 2026-04-23 00:35
gnupg	CVE-2022-3219	低危	2.4.7-21+deb13u1	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
libcurl4t64	CVE-2025-10966	低危	8.14.1-2+deb13u3	curl: Curl missing SFTP host verification with wolfSSH backend 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-11-07 08:15 修改: 2026-06-02 14:16
libcurl4t64	CVE-2025-14017	低危	8.14.1-2+deb13u3	curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
libcurl4t64	CVE-2025-14524	低危	8.14.1-2+deb13u3	curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
libcurl4t64	CVE-2025-14819	低危	8.14.1-2+deb13u3	curl: libcurl: Improper certificate validation due to cached TLS settings reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:51
libcurl4t64	CVE-2025-15079	低危	8.14.1-2+deb13u3	curl: Host verification bypass during SSH transfers 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:50
perl-modules-5.40	CVE-2011-4116	低危	5.40.1-6	perl: File:: Temp insecure temporary file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
poppler-utils	CVE-2013-4472	低危	25.03.0-5+deb13u3	xpdf: insecure temporary file 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4472 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2014-04-22 14:23 修改: 2026-05-06 22:30
poppler-utils	CVE-2017-2814	低危	25.03.0-5+deb13u3	poppler: Heap-buffer overflow in DCTStream::readScan() 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2814 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-12 17:29 修改: 2025-04-20 01:37
poppler-utils	CVE-2017-2818	低危	25.03.0-5+deb13u3	poppler: Heap-buffer overflow in the image rendering functionality 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2818 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-12 17:29 修改: 2025-04-20 01:37
poppler-utils	CVE-2017-2820	低危	25.03.0-5+deb13u3	poppler: Integer overflow in the JPEG 2000 image parsing functionality 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2820 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-07-12 17:29 修改: 2025-04-20 01:37
poppler-utils	CVE-2017-9083	低危	25.03.0-5+deb13u3	poppler: Null pointer dereference in the JPXStream::readUByte function 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9083 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2017-05-19 16:29 修改: 2026-05-13 00:24
poppler-utils	CVE-2019-9543	低危	25.03.0-5+deb13u3	poppler: recursive function call in JBIG2Stream::readGenericBitmap() in JBIG2Stream.cc causing denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9543 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-03-01 19:29 修改: 2024-11-21 04:51
poppler-utils	CVE-2019-9545	低危	25.03.0-5+deb13u3	poppler: recursive function call in JBIG2Stream::readTextRegion() in JBIG2Stream.cc causing denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9545 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2019-03-01 19:29 修改: 2024-11-21 04:51
poppler-utils	CVE-2022-24106	低危	25.03.0-5+deb13u3	In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24106 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2022-08-30 04:15 修改: 2024-11-21 06:49
libcurl4t64	CVE-2025-15224	低危	8.14.1-2+deb13u3	curl: libssh key passphrase bypass without agent set 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:47
apache2	CVE-2007-1743	低危	2.4.67-1~deb13u3	suexec in Apache HTTP Server (httpd) 2.2.3 does not verify combination ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-1743 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2007-04-13 17:19 修改: 2026-04-23 00:35
apache2	CVE-2007-3303	低危	2.4.67-1~deb13u3	Apache httpd 2.0.59 and 2.2.4, with the Prefork MPM module, allows loc ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-3303 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2007-06-20 22:30 修改: 2026-04-23 00:35
gnupg-l10n	CVE-2022-3219	低危	2.4.7-21+deb13u1	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
apache2	CVE-2008-0456	低危	2.4.67-1~deb13u3	httpd: mod_negotiation CRLF injection via untrusted file names in directories with MultiViews enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-0456 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2008-01-25 01:00 修改: 2026-04-23 00:35
libde265-0	CVE-2025-61147	低危	1.0.15-1+b3	strukturag libde265 commit d9fea9d wa discovered to contain a segmenta ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61147 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-02-23 20:28 修改: 2026-03-24 12:25
apache2	CVE-2001-1534	低危	2.4.67-1~deb13u3	mod_usertrack in Apache 1.3.11 through 1.3.20 generates session ID's u ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2001-1534 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2001-12-31 05:00 修改: 2026-04-16 00:27
gpg	CVE-2022-3219	低危	2.4.7-21+deb13u1+b3	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
apache2	CVE-2003-1307	低危	2.4.67-1~deb13u3	The mod_php module for the Apache HTTP Server allows local users with ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2003-1307 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2003-12-31 05:00 修改: 2026-04-16 00:27
apache2	CVE-2003-1580	低危	2.4.67-1~deb13u3	The Apache HTTP Server 2.0.44, when DNS resolution is enabled for clie ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2003-1580 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2010-02-05 22:30 修改: 2026-04-29 01:13
gpg-agent	CVE-2022-3219	低危	2.4.7-21+deb13u1+b3	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
python3.13	CVE-2026-3479	低危	3.13.5-2+deb13u2	python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-03-18 19:16 修改: 2026-04-07 18:16
apache2	CVE-2003-1581	低危	2.4.67-1~deb13u3	httpd: Injection of arbitrary text into log files when DNS resolution is enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2003-1581 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2010-02-05 22:30 修改: 2026-04-29 01:13
apache2-utils	CVE-2001-1534	低危	2.4.67-1~deb13u3	mod_usertrack in Apache 1.3.11 through 1.3.20 generates session ID's u ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2001-1534 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2001-12-31 05:00 修改: 2026-04-16 00:27
gpgconf	CVE-2022-3219	低危	2.4.7-21+deb13u1+b3	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
libexpat1	CVE-2026-24515	低危	2.7.1-2	libexpat: libexpat null pointer dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24515 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-23 08:16 修改: 2026-06-02 14:16
libexpat1	CVE-2026-41080	低危	2.7.1-2	libexpat: expat: libexpat: Denial of Service via hash flooding with crafted XML 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41080 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-04-16 17:16 修改: 2026-06-12 18:43
libgcrypt20	CVE-2018-6829	低危	1.11.0-7+deb13u1	libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2018-02-07 23:29 修改: 2024-11-21 04:11
libgcrypt20	CVE-2024-2236	低危	1.11.0-7+deb13u1	libgcrypt: vulnerable to Marvin Attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2024-03-06 22:15 修改: 2026-04-15 00:35
apache2-utils	CVE-2003-1307	低危	2.4.67-1~deb13u3	The mod_php module for the Apache HTTP Server allows local users with ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2003-1307 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2003-12-31 05:00 修改: 2026-04-16 00:27
apache2-utils	CVE-2003-1580	低危	2.4.67-1~deb13u3	The Apache HTTP Server 2.0.44, when DNS resolution is enabled for clie ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2003-1580 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2010-02-05 22:30 修改: 2026-04-29 01:13
python3.13-minimal	CVE-2026-3479	低危	3.13.5-2+deb13u2	python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2026-03-18 19:16 修改: 2026-04-07 18:16
supervisor	CVE-2019-12105	低危	4.2.5-3	In Supervisor through 4.0.2, an unauthenticated user can read log file ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12105 镜像层: sha256:506304d01f0f8e3aa96fa25c46416f5e177d040366916dfa166801de19f1b310 发布日期: 2019-09-10 17:15 修改: 2024-11-21 04:22
sysvinit-utils	TEMP-0517018-A83CE6	低危	3.14-4	[sysvinit: no-root option in expert installer exposes locally exploitable security flaw] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libgif7	CVE-2023-39742	低危	5.2.2-1+b1	giflib: giflib: Denial of Service via getarg.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39742 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2023-08-25 14:15 修改: 2024-11-21 08:15
tar	CVE-2005-2541	低危	1.35+dfsg-3.1	tar: does not properly warn the user when extracting setuid or setgid files 漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2005-08-10 04:00 修改: 2026-04-16 00:27
tar	TEMP-0290435-0B57B5	低危	1.35+dfsg-3.1	[tar's rmt command may have undesired side effects] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
unrtf	CVE-2025-65410	低危	0.21.10-clean-1	A stack overflow in the src/main.c component of GNU Unrtf v0.21.10 all ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-65410 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-12-23 17:15 修改: 2026-01-06 17:31
unrtf	CVE-2025-65411	低危	0.21.10-clean-1	A NULL pointer dereference in the src/path.c component of GNU Unrtf v0 ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-65411 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-12-30 18:15 修改: 2026-01-09 19:47
unzip	CVE-2021-4217	低危	6.0-29	unzip: Null pointer dereference in Unicode strings code 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4217 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2022-08-24 16:15 修改: 2024-11-21 06:37
libgif7	CVE-2024-45993	低危	5.2.2-1+b1	giflib: heap buffer overflow via gif2rgb 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45993 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2024-09-30 17:15 修改: 2025-07-10 15:41
libgif7	CVE-2025-31344	低危	5.2.2-1+b1	giflib: The giflib open-source component has a buffer overflow vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-31344 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-04-14 08:15 修改: 2026-04-15 00:35
util-linux	CVE-2022-0563	低危	2.41-5	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
util-linux	CVE-2025-14104	低危	2.41-5	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
libglib2.0-0t64	CVE-2012-0039	低危	2.84.4-3~deb13u3	glib2: hash table collisions CPU usage DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2012-0039 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2012-01-14 17:55 修改: 2026-04-29 01:13
libgnutls30t64	CVE-2011-3389	低危	3.8.9-3+deb13u4	HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST) 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2011-09-06 19:55 修改: 2026-04-29 01:13
imagemagick	CVE-2026-53460	未知	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick is free and open-source software used for editing and mani ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53460 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libgraphite2-3	CVE-2026-50593	未知	1.3.14-2+b1	Graphite before 1.3.15 has an integer underflow and resultant out-of-b ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50593 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-05 04:17 修改: 2026-06-05 16:06
imagemagick	CVE-2026-53461	未知	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick is free and open-source software used for editing and mani ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53461 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
imagemagick-7.q16	CVE-2026-49218	未知	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick is free and open-source software used for editing and mani ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49218 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
imagemagick-7.q16	CVE-2026-53460	未知	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick is free and open-source software used for editing and mani ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53460 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
perl-base	CVE-2026-48961	未知	5.40.1-6	IO::Compress versions from 2.207 before 2.220 for Perl ship a zipdetai ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961 镜像层: sha256:60e70dddd9ea3b1c77c62fe78be1d9f485706b6fe6052c3d88612bd8f56acd67 发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
imagemagick-7.q16	CVE-2026-53461	未知	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick is free and open-source software used for editing and mani ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53461 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
imagemagick-7-common	CVE-2026-49218	未知	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick is free and open-source software used for editing and mani ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49218 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libmagickcore-7.q16-10	CVE-2026-49218	未知	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick is free and open-source software used for editing and mani ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49218 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libmagickcore-7.q16-10	CVE-2026-53460	未知	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick is free and open-source software used for editing and mani ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53460 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libmagickcore-7.q16-10	CVE-2026-53461	未知	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick is free and open-source software used for editing and mani ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53461 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
imagemagick-7-common	CVE-2026-53460	未知	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick is free and open-source software used for editing and mani ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53460 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
imagemagick-7-common	CVE-2026-53461	未知	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick is free and open-source software used for editing and mani ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53461 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libmagickwand-7.q16-10	CVE-2026-49218	未知	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick is free and open-source software used for editing and mani ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49218 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
perl	CVE-2026-48961	未知	5.40.1-6	IO::Compress versions from 2.207 before 2.220 for Perl ship a zipdetai ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl-modules-5.40	CVE-2026-48961	未知	5.40.1-6	IO::Compress versions from 2.207 before 2.220 for Perl ship a zipdetai ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
libmagickwand-7.q16-10	CVE-2026-53460	未知	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick is free and open-source software used for editing and mani ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53460 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libmagickwand-7.q16-10	CVE-2026-53461	未知	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick is free and open-source software used for editing and mani ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53461 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44
libperl5.40	CVE-2026-48961	未知	5.40.1-6	IO::Compress versions from 2.207 before 2.220 for Perl ship a zipdetai ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
imagemagick	CVE-2026-49218	未知	8:7.1.1.43+dfsg1-1+deb13u9	ImageMagick is free and open-source software used for editing and mani ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49218 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-06-10 23:16 修改: 2026-06-11 18:44

Node.js (node-pkg)

低危漏洞:2

中危漏洞:5

高危漏洞:24

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
esbuild	GHSA-gv7w-rqvm-qjhr	高危	0.27.7	0.28.1	esbuild: Missing binary integrity verification in Deno module enables remote code execution via NPM_CONFIG_REGISTRY 漏洞详情: https://github.com/advisories/GHSA-gv7w-rqvm-qjhr 镜像层: sha256:33cddce78523158fad04be25f493c44c2e3eccb9d571ee990312483bd9412e28 发布日期: 2026-06-12 20:08 修改: 2026-06-12 20:08
glob	CVE-2025-64756	高危	10.4.5	11.1.0, 10.5.0	glob: glob: Command Injection Vulnerability via Malicious Filenames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64756 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2025-11-17 18:15 修改: 2025-12-02 19:34
minimatch	CVE-2026-26996	高危	9.0.5	10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3	minimatch: minimatch: Denial of Service via specially crafted glob patterns 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-02-20 03:16 修改: 2026-03-06 21:32
minimatch	CVE-2026-27903	高危	9.0.5	10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3	minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-02-26 02:16 修改: 2026-02-27 17:21
minimatch	CVE-2026-27904	高危	9.0.5	10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4	minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-02-26 02:16 修改: 2026-02-27 17:16
picomatch	CVE-2026-33671	高危	4.0.2	4.0.4, 3.0.2, 2.3.2	picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-26 22:16 修改: 2026-04-01 13:45
tar	CVE-2026-23745	高危	6.2.1	7.5.3	node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-16 22:16 修改: 2026-02-18 16:20
tar	CVE-2026-23950	高危	6.2.1	7.5.4	node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-20 01:15 修改: 2026-02-18 15:50
tar	CVE-2026-24842	高危	6.2.1	7.5.7	node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-28 01:16 修改: 2026-02-02 14:30
tar	CVE-2026-26960	高危	6.2.1	7.5.8	node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-02-20 02:16 修改: 2026-02-20 19:24
tar	CVE-2026-29786	高危	6.2.1	7.5.10	node-tar: hardlink path traversal via drive-relative linkpath 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-07 16:15 修改: 2026-03-11 21:50
tar	CVE-2026-31802	高危	6.2.1	7.5.11	tar: tar: File overwrite via drive-relative symlink traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-10 07:44 修改: 2026-03-18 18:13
tar	CVE-2026-23745	高危	7.4.3	7.5.3	node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-16 22:16 修改: 2026-02-18 16:20
tar	CVE-2026-23745	高危	7.4.3	7.5.3	node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-16 22:16 修改: 2026-02-18 16:20
tar	CVE-2026-23950	高危	7.4.3	7.5.4	node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-20 01:15 修改: 2026-02-18 15:50
tar	CVE-2026-23950	高危	7.4.3	7.5.4	node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-20 01:15 修改: 2026-02-18 15:50
tar	CVE-2026-24842	高危	7.4.3	7.5.7	node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-28 01:16 修改: 2026-02-02 14:30
tar	CVE-2026-24842	高危	7.4.3	7.5.7	node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-28 01:16 修改: 2026-02-02 14:30
tar	CVE-2026-26960	高危	7.4.3	7.5.8	node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-02-20 02:16 修改: 2026-02-20 19:24
tar	CVE-2026-26960	高危	7.4.3	7.5.8	node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-02-20 02:16 修改: 2026-02-20 19:24
tar	CVE-2026-29786	高危	7.4.3	7.5.10	node-tar: hardlink path traversal via drive-relative linkpath 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-07 16:15 修改: 2026-03-11 21:50
tar	CVE-2026-29786	高危	7.4.3	7.5.10	node-tar: hardlink path traversal via drive-relative linkpath 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-07 16:15 修改: 2026-03-11 21:50
tar	CVE-2026-31802	高危	7.4.3	7.5.11	tar: tar: File overwrite via drive-relative symlink traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-10 07:44 修改: 2026-03-18 18:13
tar	CVE-2026-31802	高危	7.4.3	7.5.11	tar: tar: File overwrite via drive-relative symlink traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-10 07:44 修改: 2026-03-18 18:13
picomatch	CVE-2026-33672	中危	4.0.2	4.0.4, 3.0.2, 2.3.2	picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-26 22:16 修改: 2026-04-01 13:44
postcss	CVE-2026-41305	中危	8.4.49	8.5.10	postcss: PostCSS: Cross-Site Scripting (XSS) via improper escaping of style closing tags 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41305 镜像层: sha256:33cddce78523158fad04be25f493c44c2e3eccb9d571ee990312483bd9412e28 发布日期: 2026-04-24 03:16 修改: 2026-04-24 17:16
brace-expansion	CVE-2026-33750	中危	2.0.2	5.0.5, 3.0.2, 2.0.3, 1.1.13	brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-03-27 15:16 修改: 2026-04-22 14:23
ip-address	CVE-2026-42338	中危	9.0.5	10.1.1	ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42338 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-05-12 20:16 修改: 2026-05-19 20:04
ws	CVE-2026-45736	中危	8.18.3	8.20.1	ws is an open source WebSocket client and server for Node.js. Prior to ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45736 镜像层: sha256:33cddce78523158fad04be25f493c44c2e3eccb9d571ee990312483bd9412e28 发布日期: 2026-05-15 15:16 修改: 2026-05-19 14:39
esbuild	GHSA-g7r4-m6w7-qqqr	低危	0.27.7	0.28.1	esbuild allows arbitrary file read when running the development server on Windows 漏洞详情: https://github.com/advisories/GHSA-g7r4-m6w7-qqqr 镜像层: sha256:33cddce78523158fad04be25f493c44c2e3eccb9d571ee990312483bd9412e28 发布日期: 2026-06-12 20:08 修改: 2026-06-12 20:08
diff	CVE-2026-24001	低危	5.2.0	8.0.3, 5.2.2, 4.0.4, 3.5.1	jsdiff: denial of service vulnerability in parsePatch and applyPatch 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24001 镜像层: sha256:63cafc19e1a998829153703bba920715ac30b551fc5cb00bb3170f8f52fa2cde 发布日期: 2026-01-22 03:15 修改: 2026-03-04 15:23

Ruby (gemspec)

低危漏洞:2

中危漏洞:6

高危漏洞:5

严重漏洞:3

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
json	CVE-2026-33210	严重	2.18.0	~> 2.15.2.1, ~> 2.17.1.2, >= 2.19.2	ruby/json: Ruby JSON: Denial of Service or Information Disclosure via format string injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33210 镜像层: sha256:33fba7cb0c44491d1a331e13f6e630f6d06b7096f24037dd4dbe0728bb8eafc9 发布日期: 2026-03-20 23:16 修改: 2026-03-27 21:25
net-imap	CVE-2026-42257	严重	0.6.2	~> 0.4.24, ~> 0.5.14, >= 0.6.4	net-imap: Net::IMAP: Arbitrary IMAP command injection via CRLF sequences in unvalidated input 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42257 镜像层: sha256:33fba7cb0c44491d1a331e13f6e630f6d06b7096f24037dd4dbe0728bb8eafc9 发布日期: 2026-05-09 20:16 修改: 2026-05-18 17:59
net-imap	CVE-2026-42258	严重	0.6.2	~> 0.4.24, ~> 0.5.14, >= 0.6.4	ruby/net-imap: ruby: Net::IMAP: IMAP Command Injection via Symbol Arguments 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42258 镜像层: sha256:33fba7cb0c44491d1a331e13f6e630f6d06b7096f24037dd4dbe0728bb8eafc9 发布日期: 2026-05-09 20:16 修改: 2026-05-18 18:02
erb	CVE-2026-41316	高危	6.0.1	~> 4.0.3.1, ~> 4.0.4.1, ~> 6.0.1.1, >= 6.0.4	erb: ERB: Arbitrary code execution via deserialization bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41316 镜像层: sha256:33fba7cb0c44491d1a331e13f6e630f6d06b7096f24037dd4dbe0728bb8eafc9 发布日期: 2026-04-24 03:16 修改: 2026-04-29 20:56
net-imap	CVE-2026-42245	高危	0.6.2	~> 0.4.24, ~> 0.5.14, >= 0.6.4	ruby: net-imap: Net::IMAP: Denial of Service via crafted IMAP responses 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42245 镜像层: sha256:33fba7cb0c44491d1a331e13f6e630f6d06b7096f24037dd4dbe0728bb8eafc9 发布日期: 2026-05-09 20:16 修改: 2026-05-18 18:12
net-imap	CVE-2026-42246	高危	0.6.2	~> 0.3.10, ~> 0.4.24, ~> 0.5.14, >= 0.6.4	Net::IMAP implements Internet Message Access Protocol (IMAP) client fu ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42246 镜像层: sha256:33fba7cb0c44491d1a331e13f6e630f6d06b7096f24037dd4dbe0728bb8eafc9 发布日期: 2026-05-09 20:16 修改: 2026-05-18 18:08
puma	CVE-2026-47736	高危	8.0.1	~> 7.2.1, >= 8.0.2	Puma PROXY Protocol v1 Parser Allows Remote Memory Exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47736 镜像层: sha256:5cc6146ae352f3dfe0d70d23e04cae37fb76dc2db264558d524668dedf325715 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
puma	CVE-2026-47737	高危	8.0.1	~> 7.2.1, >= 8.0.2	Puma PROXY Protocol v1 Accepts Repeated Protocol Headers on Persistent Connections 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47737 镜像层: sha256:5cc6146ae352f3dfe0d70d23e04cae37fb76dc2db264558d524668dedf325715 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
net-imap	CVE-2026-47240	中危	0.6.2	~> 0.5.15, >= 0.6.4.1	Net::IMAP: Command Injection via non-synchronizing literal in "raw" argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47240 镜像层: sha256:33fba7cb0c44491d1a331e13f6e630f6d06b7096f24037dd4dbe0728bb8eafc9 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
net-imap	CVE-2026-47242	中危	0.6.2	~> 0.5.15, >= 0.6.4.1	Net::IMAP: Command Injection via ID command argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47242 镜像层: sha256:33fba7cb0c44491d1a331e13f6e630f6d06b7096f24037dd4dbe0728bb8eafc9 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
net-imap	CVE-2026-47240	中危	0.6.4	~> 0.5.15, >= 0.6.4.1	Net::IMAP: Command Injection via non-synchronizing literal in "raw" argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47240 镜像层: sha256:5cc6146ae352f3dfe0d70d23e04cae37fb76dc2db264558d524668dedf325715 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
net-imap	CVE-2026-47242	中危	0.6.4	~> 0.5.15, >= 0.6.4.1	Net::IMAP: Command Injection via ID command argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47242 镜像层: sha256:5cc6146ae352f3dfe0d70d23e04cae37fb76dc2db264558d524668dedf325715 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
carrierwave	CVE-2026-44587	中危	2.2.6	~> 2.2.7, >= 3.1.3	CarrierWave has a denylisted_content_type bypass via Unescaped Regex Metacharacters 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44587 镜像层: sha256:5cc6146ae352f3dfe0d70d23e04cae37fb76dc2db264558d524668dedf325715 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
net-imap	CVE-2026-42256	中危	0.6.2	~> 0.4.24, ~> 0.5.14, >= 0.6.4	ruby/net-imap: ruby: Net::IMAP: Denial of Service via large iteration count in SCRAM authentication 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42256 镜像层: sha256:33fba7cb0c44491d1a331e13f6e630f6d06b7096f24037dd4dbe0728bb8eafc9 发布日期: 2026-05-09 20:16 修改: 2026-05-18 18:06
net-imap	CVE-2026-47241	低危	0.6.2	~> 0.5.15, >= 0.6.4.1	Net::IMAP: Denial of Service via incomplete raw argument validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47241 镜像层: sha256:33fba7cb0c44491d1a331e13f6e630f6d06b7096f24037dd4dbe0728bb8eafc9 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
net-imap	CVE-2026-47241	低危	0.6.4	~> 0.5.15, >= 0.6.4.1	Net::IMAP: Denial of Service via incomplete raw argument validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47241 镜像层: sha256:5cc6146ae352f3dfe0d70d23e04cae37fb76dc2db264558d524668dedf325715 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

app/vendor/bundle/ruby/4.0.0/gems/prometheus-client-mmap-1.5.0-x86_64-linux-gnu/Cargo.lock (cargo)

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

app/vendor/bundle/ruby/4.0.0/gems/prometheus-client-mmap-1.5.0-x86_64-linux-gnu/ext/fast_mmaped_file_rs/Cargo.lock (cargo)

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

usr/lib/xeokit-metadata/xeokit-metadata.deps.json (dotnet-core)

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

usr/local/bin/gosu (gobinary)

低危漏洞:2

中危漏洞:24

高危漏洞:14

严重漏洞:1

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
stdlib	CVE-2025-68121	严重	v1.23.8	1.24.13, 1.25.7, 1.26.0-rc.3	crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68121 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-02-05 18:16 修改: 2026-04-29 14:16
stdlib	CVE-2025-61726	高危	v1.23.8	1.24.12, 1.25.6	golang: net/url: Memory exhaustion in query parameter parsing in net/url 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61726 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-01-28 20:16 修改: 2026-02-06 18:47
stdlib	CVE-2025-61729	高危	v1.23.8	1.24.11, 1.25.5	crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61729 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-12-02 19:15 修改: 2025-12-19 18:25
stdlib	CVE-2026-25679	高危	v1.23.8	1.25.8, 1.26.1	net/url: Incorrect parsing of IPv6 host literals in net/url 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25679 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:43
stdlib	CVE-2026-32280	高危	v1.23.8	1.25.9, 1.26.2	crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32280 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:16
stdlib	CVE-2026-32281	高危	v1.23.8	1.25.9, 1.26.2	crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32281 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib	CVE-2026-32283	高危	v1.23.8	1.25.9, 1.26.2	crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32283 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:12
stdlib	CVE-2026-33811	高危	v1.23.8	1.25.10, 1.26.3	net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-05-07 20:16 修改: 2026-05-12 20:23
stdlib	CVE-2026-33814	高危	v1.23.8	1.25.10, 1.26.3	When processing HTTP/2 SETTINGS frames, transport will enter an infini ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-05-07 20:16 修改: 2026-05-13 14:41
stdlib	CVE-2026-39820	高危	v1.23.8	1.25.10, 1.26.3	Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-05-07 20:16 修改: 2026-05-13 15:10
stdlib	CVE-2026-39823	高危	v1.23.8	1.25.10, 1.26.3	CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:58
stdlib	CVE-2026-39825	高危	v1.23.8	1.25.10, 1.26.3	ReverseProxy can forward queries containing parameters not visible to ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:58
stdlib	CVE-2026-39836	高危	v1.23.8	1.25.10, 1.26.3	ELSA-2026-22112: go-toolset:ol8 security update (IMPORTANT) 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-05-07 20:16 修改: 2026-05-13 15:11
stdlib	CVE-2026-42499	高危	v1.23.8	1.25.10, 1.26.3	Pathological inputs could cause DoS through consumePhrase when parsing ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:59
stdlib	CVE-2026-42504	高危	v1.23.8	1.25.11, 1.26.4	Decoding a maliciously-crafted MIME header containing many invalid enc ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib	CVE-2025-0913	中危	v1.23.8	1.23.10, 1.24.4	Inconsistent handling of O_CREATE\|O_EXCL on Unix and Windows in os in syscall 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0913 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-06-11 18:15 修改: 2025-08-08 14:53
stdlib	CVE-2025-22873	中危	v1.23.8	1.23.9, 1.24.3	os: os: Information disclosure via path traversal using specially crafted filenames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22873 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-02-04 23:15 修改: 2026-02-10 15:16
stdlib	CVE-2025-4673	中危	v1.23.8	1.23.10, 1.24.4	net/http: Sensitive headers not cleared on cross-origin redirect in net/http 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4673 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-06-11 17:15 修改: 2026-04-15 00:35
stdlib	CVE-2025-47906	中危	v1.23.8	1.23.12, 1.24.6	os/exec: Unexpected paths returned from LookPath in os/exec 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47906 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-09-18 19:15 修改: 2026-01-27 19:56
stdlib	CVE-2025-47907	中危	v1.23.8	1.23.12, 1.24.6	database/sql: Postgres Scan Race Condition 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47907 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-08-07 16:15 修改: 2026-01-29 19:11
stdlib	CVE-2025-47912	中危	v1.23.8	1.24.8, 1.25.2	net/url: Insufficient validation of bracketed IPv6 hostnames in net/url 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47912 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-10-29 23:16 修改: 2026-01-29 13:57
stdlib	CVE-2025-58183	中危	v1.23.8	1.24.8, 1.25.2	golang: archive/tar: Unbounded allocation when parsing GNU sparse map 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58183 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib	CVE-2025-58185	中危	v1.23.8	1.24.8, 1.25.2	encoding/asn1: Parsing DER payload can cause memory exhaustion in encoding/asn1 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58185 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-10-29 23:16 修改: 2026-02-06 20:26
stdlib	CVE-2025-58187	中危	v1.23.8	1.24.9, 1.25.3	crypto/x509: Quadratic complexity when checking name constraints in crypto/x509 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58187 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-10-29 23:16 修改: 2026-01-29 16:02
stdlib	CVE-2025-58188	中危	v1.23.8	1.24.8, 1.25.2	crypto/x509: golang: Panic when validating certificates with DSA public keys in crypto/x509 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58188 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:55
stdlib	CVE-2025-58189	中危	v1.23.8	1.24.8, 1.25.2	crypto/tls: go crypto/tls ALPN negotiation error contains attacker controlled information 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58189 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:49
stdlib	CVE-2025-61723	中危	v1.23.8	1.24.8, 1.25.2	encoding/pem: Quadratic complexity when parsing some invalid inputs in encoding/pem 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61723 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:49
stdlib	CVE-2025-61724	中危	v1.23.8	1.24.8, 1.25.2	net/textproto: Excessive CPU consumption in Reader.ReadResponse in net/textproto 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61724 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:30
stdlib	CVE-2025-61725	中危	v1.23.8	1.24.8, 1.25.2	net/mail: Excessive CPU consumption in ParseAddress in net/mail 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61725 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib	CVE-2025-61727	中危	v1.23.8	1.24.11, 1.25.5	golang: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61727 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-12-03 20:16 修改: 2025-12-18 20:15
stdlib	CVE-2025-61728	中危	v1.23.8	1.24.12, 1.25.6	golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61728 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-01-28 20:16 修改: 2026-02-06 18:45
stdlib	CVE-2025-61730	中危	v1.23.8	1.24.12, 1.25.6	crypto/tls: Handshake messages may be processed at the incorrect encryption level in crypto/tls 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61730 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-01-28 20:16 修改: 2026-02-03 20:36
stdlib	CVE-2026-27142	中危	v1.23.8	1.25.8, 1.26.1	html/template: URLs in meta content attribute actions are not escaped in html/template 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27142 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:30
stdlib	CVE-2026-27145	中危	v1.23.8	1.25.11, 1.26.4	*x509.Certificate).VerifyHostname previously called matchHostnames in ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib	CVE-2026-32282	中危	v1.23.8	1.25.9, 1.26.2	golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32282 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib	CVE-2026-32288	中危	v1.23.8	1.25.9, 1.26.2	archive/tar: golang: Go's archive/tar package: Denial of Service via maliciously-crafted archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32288 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:08
stdlib	CVE-2026-32289	中危	v1.23.8	1.25.9, 1.26.2	html/template: golang: html/template: Cross-Site Scripting (XSS) via improper context and brace depth tracking in JS template literals 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32289 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:06
stdlib	CVE-2026-39826	中危	v1.23.8	1.25.10, 1.26.3	html/template: golang: html/template: Cross-site scripting due to incorrect script tag escaping 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:59
stdlib	CVE-2026-42507	中危	v1.23.8	1.25.11, 1.26.4	When returning errors, functions in the net/textproto package would in ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib	CVE-2025-58186	低危	v1.23.8	1.24.8, 1.25.2	golang.org/net/http: Lack of limit when parsing cookies can cause memory exhaustion in net/http 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58186 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib	CVE-2026-27139	低危	v1.23.8	1.25.8, 1.26.1	os: FileInfo can escape from a Root in golang os module 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27139 镜像层: sha256:28ce4ca2dcf2b44eac712bc35b7bdf6c596e8b1c6e2ba48912220af4219e0c2a 发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:32

/app/modules/storages/spec/support/fixtures/vcr_cassettes/one_drive/copy_template_folder_copy_successful.yml ()

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

/app/modules/storages/spec/support/fixtures/vcr_cassettes/one_drive/copy_template_folder_setup.yml ()

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

/app/modules/storages/spec/support/fixtures/vcr_cassettes/one_drive/download_link_query_success.yml ()

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

/app/modules/storages/spec/support/fixtures/vcr_cassettes/one_drive/upload_link_success.yml ()

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

/app/modules/storages/spec/support/fixtures/vcr_cassettes/one_drive/user_query_unauthorized.yml ()

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

/etc/ssl/private/ssl-cert-snakeoil.key ()

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息