| libssl3t64 |
CVE-2026-45447 |
高危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-06-09 17:17 修改: 2026-06-10 15:16
|
| openssl |
CVE-2026-45447 |
高危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-06-09 17:17 修改: 2026-06-10 15:16
|
| curl |
CVE-2026-3783 |
中危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.8 |
curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
|
| curl |
CVE-2026-5545 |
中危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.9 |
curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
|
| curl |
CVE-2026-6253 |
中危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.9 |
curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
|
| curl |
CVE-2026-6429 |
中危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.9 |
curl: libcurl: Credential leak via reused proxy connection during HTTP redirects
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
|
| curl |
CVE-2026-7168 |
中危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.9 |
curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
|
| dpkg |
CVE-2026-2219 |
中危 |
1.22.6ubuntu6.5 |
1.22.6ubuntu6.6 |
It was discovered that dpkg-deb (a component of dpkg, the Debian packa ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2219
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-03-07 09:16 修改: 2026-06-02 19:12
|
| libblkid1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.4 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libc-bin |
CVE-2026-4046 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-03-30 18:16 修改: 2026-04-20 22:16
|
| libc-bin |
CVE-2026-4437 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:41
|
| libc-bin |
CVE-2026-4438 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:40
|
| libc-bin |
CVE-2026-5435 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| libc-bin |
CVE-2026-6238 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
|
| libc6 |
CVE-2026-4046 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-03-30 18:16 修改: 2026-04-20 22:16
|
| libc6 |
CVE-2026-4437 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:41
|
| libc6 |
CVE-2026-4438 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:40
|
| libc6 |
CVE-2026-5435 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| libc6 |
CVE-2026-6238 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
|
| libcap2 |
CVE-2026-4878 |
中危 |
1:2.66-5ubuntu2.2 |
1:2.66-5ubuntu2.4 |
libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-09 16:16 修改: 2026-06-11 10:16
|
| libcap2-bin |
CVE-2026-4878 |
中危 |
1:2.66-5ubuntu2.2 |
1:2.66-5ubuntu2.4 |
libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-04-09 16:16 修改: 2026-06-11 10:16
|
| libcurl4t64 |
CVE-2026-1965 |
中危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.8 |
curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
|
| libcurl4t64 |
CVE-2026-3783 |
中危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.8 |
curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
|
| libcurl4t64 |
CVE-2026-5545 |
中危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.9 |
curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
|
| libcurl4t64 |
CVE-2026-6253 |
中危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.9 |
curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
|
| libcurl4t64 |
CVE-2026-6429 |
中危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.9 |
curl: libcurl: Credential leak via reused proxy connection during HTTP redirects
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
|
| libcurl4t64 |
CVE-2026-7168 |
中危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.9 |
curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
|
| libexpat1 |
CVE-2025-66382 |
中危 |
2.6.1-2ubuntu0.4 |
|
libexpat: libexpat: Denial of service via crafted file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2025-11-28 07:15 修改: 2026-06-02 14:16
|
| libgcrypt20 |
CVE-2026-41989 |
中危 |
1.10.3-2build1 |
1.10.3-2ubuntu0.1 |
Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-23 05:16 修改: 2026-04-27 18:33
|
| libgnutls30t64 |
CVE-2025-14831 |
中危 |
3.8.3-1.1ubuntu3.4 |
3.8.3-1.1ubuntu3.5 |
gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14831
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-02-09 15:16 修改: 2026-06-10 18:16
|
| libgnutls30t64 |
CVE-2026-33845 |
中危 |
3.8.3-1.1ubuntu3.4 |
3.8.3-1.1ubuntu3.6 |
gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-33846 |
中危 |
3.8.3-1.1ubuntu3.4 |
3.8.3-1.1ubuntu3.6 |
gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-05-04 10:15 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-3832 |
中危 |
3.8.3-1.1ubuntu3.4 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Security bypass allows acceptance of revoked server certificates via crafted OCSP response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3832
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-30 18:16 修改: 2026-06-02 17:16
|
| libgnutls30t64 |
CVE-2026-3833 |
中危 |
3.8.3-1.1ubuntu3.4 |
3.8.3-1.1ubuntu3.6 |
gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-42009 |
中危 |
3.8.3-1.1ubuntu3.4 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-05-18 13:16 修改: 2026-06-08 17:16
|
| libgnutls30t64 |
CVE-2026-42010 |
中危 |
3.8.3-1.1ubuntu3.4 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Authentication Bypass via NUL Character in Username
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-05-07 12:16 修改: 2026-06-10 16:17
|
| libgnutls30t64 |
CVE-2026-42011 |
中危 |
3.8.3-1.1ubuntu3.4 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Security bypass due to incorrect name constraint handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-05-07 15:16 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-42012 |
中危 |
3.8.3-1.1ubuntu3.4 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-42013 |
中危 |
3.8.3-1.1ubuntu3.4 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-42014 |
中危 |
3.8.3-1.1ubuntu3.4 |
3.8.3-1.1ubuntu3.6 |
gnutls: Fix use-after-free in gnutls_pkcs11_token_set_pin
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libgnutls30t64 |
CVE-2026-42015 |
中危 |
3.8.3-1.1ubuntu3.4 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-5260 |
中危 |
3.8.3-1.1ubuntu3.4 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Information disclosure via heap overread in RSA key exchange
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-5419 |
中危 |
3.8.3-1.1ubuntu3.4 |
3.8.3-1.1ubuntu3.6 |
guntls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5419
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-06-01 21:16 修改: 2026-06-02 17:16
|
| libmariadb3 |
CVE-2026-34303 |
中危 |
1:10.11.14-0ubuntu0.24.04.1 |
|
mysql: Optimizer unspecified vulnerability (CPU Apr 2026)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34303
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-04-21 21:16 修改: 2026-04-23 15:09
|
| libmount1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.4 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libnghttp2-14 |
CVE-2026-27135 |
中危 |
1.59.0-1ubuntu0.2 |
1.59.0-1ubuntu0.3 |
nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27135
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-18 18:16 修改: 2026-05-13 22:16
|
| libpam-cap |
CVE-2026-4878 |
中危 |
1:2.66-5ubuntu2.2 |
1:2.66-5ubuntu2.4 |
libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-04-09 16:16 修改: 2026-06-11 10:16
|
| libpython3.12-minimal |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.11 |
|
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-12 18:16 修改: 2026-06-11 14:29
|
| libpython3.12-minimal |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.11 |
|
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-04 23:16 修改: 2026-05-01 16:16
|
| libpython3.12-stdlib |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.11 |
|
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-12 18:16 修改: 2026-06-11 14:29
|
| libpython3.12-stdlib |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.11 |
|
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-04 23:16 修改: 2026-05-01 16:16
|
| libsmartcols1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.4 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libssh-4 |
CVE-2026-3731 |
中危 |
0.10.6-2ubuntu0.3 |
0.10.6-2ubuntu0.4 |
libssh: libssh: Denial of Service via out-of-bounds read in SFTP extension name handler
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3731
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-08 11:15 修改: 2026-03-12 19:02
|
| bsdutils |
CVE-2026-27456 |
中危 |
1:2.39.3-9ubuntu6.4 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libssl3t64 |
CVE-2026-31790 |
中危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.9 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3t64 |
CVE-2026-34182 |
中危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
|
| libssl3t64 |
CVE-2026-45445 |
中危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: AES-OCB IV Ignored on EVP_Cipher() Path
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libsystemd0 |
CVE-2026-29111 |
中危 |
255.4-1ubuntu8.12 |
255.4-1ubuntu8.14 |
systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
|
| libsystemd0 |
CVE-2026-40225 |
中危 |
255.4-1ubuntu8.12 |
255.4-1ubuntu8.14 |
systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-10 16:16 修改: 2026-04-27 19:00
|
| libsystemd0 |
CVE-2026-40226 |
中危 |
255.4-1ubuntu8.12 |
255.4-1ubuntu8.16 |
systemd: systemd nspawn: Escape-to-host action via crafted config file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
|
| libudev1 |
CVE-2026-29111 |
中危 |
255.4-1ubuntu8.12 |
255.4-1ubuntu8.14 |
systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
|
| libudev1 |
CVE-2026-40225 |
中危 |
255.4-1ubuntu8.12 |
255.4-1ubuntu8.14 |
systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-10 16:16 修改: 2026-04-27 19:00
|
| libudev1 |
CVE-2026-40226 |
中危 |
255.4-1ubuntu8.12 |
255.4-1ubuntu8.16 |
systemd: systemd nspawn: Escape-to-host action via crafted config file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
|
| libuuid1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.4 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libxslt1.1 |
CVE-2025-10911 |
中危 |
1.1.39-0exp1ubuntu0.24.04.3 |
|
libxslt: use-after-free with key data stored cross-RVT
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10911
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2025-09-25 16:15 修改: 2026-04-27 21:16
|
| libxslt1.1 |
CVE-2025-7425 |
中危 |
1.1.39-0exp1ubuntu0.24.04.3 |
|
libxslt: libxml2: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7425
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2025-07-10 14:15 修改: 2026-05-12 13:17
|
| mariadb-common |
CVE-2026-34303 |
中危 |
1:10.11.14-0ubuntu0.24.04.1 |
|
mysql: Optimizer unspecified vulnerability (CPU Apr 2026)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34303
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-04-21 21:16 修改: 2026-04-23 15:09
|
| mount |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.4 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| curl |
CVE-2026-1965 |
中危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.8 |
curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
|
| openssl |
CVE-2026-31790 |
中危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.9 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-34182 |
中危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
|
| openssl |
CVE-2026-45445 |
中危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: AES-OCB IV Ignored on EVP_Cipher() Path
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| python3-cryptography |
CVE-2026-26007 |
中危 |
41.0.7-4ubuntu0.1 |
41.0.7-4ubuntu0.3 |
cryptography: cryptography Subgroup Attack Due to Missing Subgroup Validation for SECT Curves
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26007
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-02-10 22:17 修改: 2026-02-23 15:40
|
| python3-pyasn1 |
CVE-2026-30922 |
中危 |
0.4.8-4ubuntu0.1 |
0.4.8-4ubuntu0.2 |
pyasn1: pyasn1 Vulnerable to Denial of Service via Unbounded Recursion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-30922
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-18 04:17 修改: 2026-05-01 17:16
|
| python3-urllib3 |
CVE-2026-44431 |
中危 |
2.0.7-1ubuntu0.6 |
2.0.7-1ubuntu0.7 |
urllib3: urllib3: Information disclosure via cross-origin redirects forwarding sensitive headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44431
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-05-13 16:16 修改: 2026-05-14 13:56
|
| python3.12 |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.11 |
|
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-12 18:16 修改: 2026-06-11 14:29
|
| python3.12 |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.11 |
|
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-04 23:16 修改: 2026-05-01 16:16
|
| python3.12-minimal |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.11 |
|
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-12 18:16 修改: 2026-06-11 14:29
|
| python3.12-minimal |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.11 |
|
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-04 23:16 修改: 2026-05-01 16:16
|
| sed |
CVE-2026-5958 |
中危 |
4.9-2build1 |
4.9-2ubuntu0.24.04.1 |
sed: GNU sed TOCTOU race condition
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5958
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-20 12:16 修改: 2026-05-19 15:17
|
| tar |
CVE-2025-45582 |
中危 |
1.35+dfsg-3build1 |
|
tar: Tar path traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-45582
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2025-07-11 17:15 修改: 2025-11-02 01:15
|
| tar |
CVE-2026-5704 |
中危 |
1.35+dfsg-3build1 |
|
tar: tar: Hidden file injection via crafted archives
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-06 16:16 修改: 2026-04-22 20:08
|
| util-linux |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.4 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| wget |
CVE-2021-31879 |
中危 |
1.21.4-1ubuntu4.1 |
|
wget: authorization header disclosure on redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31879
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2021-04-29 05:15 修改: 2024-11-21 06:06
|
| libssl3t64 |
CVE-2026-7383 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3t64 |
CVE-2026-9076 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libgnutls30t64 |
CVE-2025-9820 |
低危 |
3.8.3-1.1ubuntu3.4 |
3.8.3-1.1ubuntu3.5 |
gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9820
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-01-26 20:16 修改: 2026-05-12 13:17
|
| libicu74 |
CVE-2025-5222 |
低危 |
74.2-1ubuntu3.1 |
|
icu: Stack buffer overflow in the SRBRoot::addTag function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5222
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2025-05-27 21:15 修改: 2026-04-23 00:16
|
| liblzma5 |
CVE-2026-34743 |
低危 |
5.6.1+really5.4.5-1ubuntu0.2 |
5.6.1+really5.4.5-1ubuntu0.3 |
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-02 19:21 修改: 2026-04-15 17:33
|
| libsystemd0 |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.12 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
|
| curl |
CVE-2026-6276 |
低危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.9 |
curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
|
| curl |
CVE-2025-0167 |
低危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.8 |
When asked to use a `.netrc` file for credentials **and** to follow HT ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0167
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2025-02-05 10:15 修改: 2025-07-30 19:41
|
| curl |
CVE-2026-3784 |
低危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.8 |
curl: curl: Unauthorized access due to improper HTTP proxy connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
|
| libudev1 |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.12 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
|
| libbpf1 |
CVE-2025-29481 |
低危 |
1:1.3.0-2build2 |
|
libbpf: Heap Buffer Overflow in libbpf
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29481
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2025-04-07 20:15 修改: 2026-02-25 08:16
|
| libcurl4t64 |
CVE-2025-0167 |
低危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.8 |
When asked to use a `.netrc` file for credentials **and** to follow HT ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0167
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2025-02-05 10:15 修改: 2025-07-30 19:41
|
| libcurl4t64 |
CVE-2026-3784 |
低危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.8 |
curl: curl: Unauthorized access due to improper HTTP proxy connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
|
| login |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-4ubuntu3.2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
|
| libcurl4t64 |
CVE-2026-4873 |
低危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.9 |
curl: curl: Information disclosure due to incorrect TLS connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
|
| libcurl4t64 |
CVE-2026-5773 |
低危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.9 |
curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
|
| libcurl4t64 |
CVE-2026-6276 |
低危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.9 |
curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
|
| libelf1t64 |
CVE-2025-1352 |
低危 |
0.190-1.1ubuntu0.1 |
|
elfutils: GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1352
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2025-02-16 15:15 修改: 2026-06-02 14:16
|
| libelf1t64 |
CVE-2025-1376 |
低危 |
0.190-1.1ubuntu0.1 |
|
elfutils: GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1376
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2025-02-17 05:15 修改: 2026-06-02 14:16
|
| curl |
CVE-2026-4873 |
低危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.9 |
curl: curl: Information disclosure due to incorrect TLS connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
|
| openssl |
CVE-2026-28387 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.9 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-28388 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.9 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-28389 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.9 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-28390 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.9 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-31789 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.9 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-34180 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42766 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42767 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42770 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: FFC-DH Peer Validation Uses Attacker-Supplied q
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-45446 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-7383 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-9076 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| passwd |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-4ubuntu3.2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
|
| curl |
CVE-2026-5773 |
低危 |
8.5.0-2ubuntu10.7 |
8.5.0-2ubuntu10.9 |
curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773
镜像层: sha256:1f0a2941c5d09a9d8d85c20742c839b6c934b80bd075c23592d40d677ab57b03
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
|
| libgcrypt20 |
CVE-2024-2236 |
低危 |
1.10.3-2build1 |
|
libgcrypt: vulnerable to Marvin Attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2024-03-06 22:15 修改: 2026-04-15 00:35
|
| libssl3t64 |
CVE-2026-28387 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.9 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3t64 |
CVE-2026-28388 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.9 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3t64 |
CVE-2026-28389 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.9 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3t64 |
CVE-2026-28390 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.9 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3t64 |
CVE-2026-31789 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.9 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3t64 |
CVE-2026-34180 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3t64 |
CVE-2026-42766 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3t64 |
CVE-2026-42767 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3t64 |
CVE-2026-42770 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: FFC-DH Peer Validation Uses Attacker-Supplied q
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3t64 |
CVE-2026-45446 |
低危 |
3.0.13-0ubuntu3.7 |
3.0.13-0ubuntu3.11 |
openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:e5dae71ade4390c09123a86ada6c9bc64ac469d0495acae5b2216a627395050c
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|