| bzip2-libs |
CVE-2019-12900 |
中危 |
1.0.8-8.el9 |
|
bzip2: bzip2: Data integrity error when decompressing (with data integrity tests fail).
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12900
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2019-06-19 23:15 修改: 2023-11-07 03:03
|
| expat |
CVE-2024-45491 |
中危 |
2.5.0-3.el9_5.1 |
|
libexpat: Integer Overflow or Wraparound
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45491
镜像层: sha256:3caeb274e0e15d415c7751227ffef4880be3b66a9b9594ef0244e65609090d0e
发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
|
| glib2 |
CVE-2024-52533 |
中危 |
2.68.4-14.el9_4.1 |
|
glib: buffer overflow in set_connect_msg()
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52533
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-11-11 23:15 修改: 2024-12-06 14:15
|
| libarchive |
CVE-2023-30571 |
中危 |
3.5.3-4.el9 |
|
libarchive: Race condition in multi-threaded use of archive_write_disk_header() on posix based systems
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-30571
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2023-05-29 20:15 修改: 2025-01-14 17:15
|
| libyaml |
CVE-2024-35325 |
中危 |
0.2.5-7.el9 |
|
libyaml: double-free in yaml_event_delete in /src/libyaml/src/api.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35325
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-06-13 17:15 修改: 2024-08-28 16:15
|
| socat |
CVE-2024-54661 |
中危 |
1.7.4.1-6.el9 |
|
socat: arbitrary file overwrite via predictable /tmp directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-54661
镜像层: sha256:3caeb274e0e15d415c7751227ffef4880be3b66a9b9594ef0244e65609090d0e
发布日期: 2024-12-04 05:15 修改: 2025-01-07 01:15
|
| systemd |
CVE-2021-3997 |
中危 |
252-46.el9_5.2 |
|
systemd: Uncontrolled recursion in systemd-tmpfiles when removing files
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997
镜像层: sha256:3caeb274e0e15d415c7751227ffef4880be3b66a9b9594ef0244e65609090d0e
发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
|
| systemd-libs |
CVE-2021-3997 |
中危 |
252-46.el9_5.2 |
|
systemd: Uncontrolled recursion in systemd-tmpfiles when removing files
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
|
| systemd-pam |
CVE-2021-3997 |
中危 |
252-46.el9_5.2 |
|
systemd: Uncontrolled recursion in systemd-tmpfiles when removing files
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997
镜像层: sha256:3caeb274e0e15d415c7751227ffef4880be3b66a9b9594ef0244e65609090d0e
发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
|
| systemd-rpm-macros |
CVE-2021-3997 |
中危 |
252-46.el9_5.2 |
|
systemd: Uncontrolled recursion in systemd-tmpfiles when removing files
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997
镜像层: sha256:3caeb274e0e15d415c7751227ffef4880be3b66a9b9594ef0244e65609090d0e
发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
|
| tar |
CVE-2005-2541 |
中危 |
2:1.34-7.el9 |
|
tar: does not properly warn the user when extracting setuid or setgid files
漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541
镜像层: sha256:3caeb274e0e15d415c7751227ffef4880be3b66a9b9594ef0244e65609090d0e
发布日期: 2005-08-10 04:00 修改: 2023-11-07 01:57
|
| libcurl-minimal |
CVE-2024-11053 |
低危 |
7.76.1-31.el9 |
|
curl: curl netrc password leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-12-11 08:15 修改: 2024-12-15 17:15
|
| libcurl-minimal |
CVE-2024-7264 |
低危 |
7.76.1-31.el9 |
|
curl: libcurl: ASN.1 date parser overread
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-07-31 08:15 修改: 2024-10-30 20:35
|
| libcurl-minimal |
CVE-2024-9681 |
低危 |
7.76.1-31.el9 |
|
curl: HSTS subdomain overwrites parent cache entry
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-11-06 08:15 修改: 2024-12-13 14:15
|
| libgcc |
CVE-2022-27943 |
低危 |
11.5.0-2.el9 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
|
| libstdc++ |
CVE-2022-27943 |
低危 |
11.5.0-2.el9 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
|
| libxml2 |
CVE-2023-45322 |
低危 |
2.9.13-6.el9_4 |
|
libxml2: use-after-free in xmlUnlinkNode() in tree.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45322
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2023-10-06 22:15 修改: 2024-08-02 21:15
|
| libxml2 |
CVE-2024-34459 |
低危 |
2.9.13-6.el9_4 |
|
libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34459
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-05-14 15:39 修改: 2024-08-22 18:35
|
| curl-minimal |
CVE-2024-11053 |
低危 |
7.76.1-31.el9 |
|
curl: curl netrc password leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-12-11 08:15 修改: 2024-12-15 17:15
|
| libzstd |
CVE-2022-4899 |
低危 |
1.5.1-2.el9 |
|
zstd: mysql: buffer overrun in util.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4899
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2023-03-31 20:15 修改: 2023-11-07 03:59
|
| ncurses-base |
CVE-2022-29458 |
低危 |
6.2-10.20210508.el9 |
|
ncurses: segfaulting OOB read
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
|
| ncurses-base |
CVE-2023-45918 |
低危 |
6.2-10.20210508.el9 |
|
ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-02-16 22:15 修改: 2024-11-21 21:15
|
| ncurses-base |
CVE-2023-50495 |
低危 |
6.2-10.20210508.el9 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
|
| ncurses-libs |
CVE-2022-29458 |
低危 |
6.2-10.20210508.el9 |
|
ncurses: segfaulting OOB read
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
|
| ncurses-libs |
CVE-2023-45918 |
低危 |
6.2-10.20210508.el9 |
|
ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-02-16 22:15 修改: 2024-11-21 21:15
|
| ncurses-libs |
CVE-2023-50495 |
低危 |
6.2-10.20210508.el9 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
|
| openldap |
CVE-2023-2953 |
低危 |
2.6.6-3.el9 |
|
openldap: null pointer dereference in ber_memalloc_x function
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2023-05-30 22:15 修改: 2025-01-10 22:15
|
| openssl |
CVE-2024-2511 |
低危 |
1:3.2.2-6.el9_5 |
|
openssl: Unbounded memory growth with session handling in TLSv1.3
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511
镜像层: sha256:3caeb274e0e15d415c7751227ffef4880be3b66a9b9594ef0244e65609090d0e
发布日期: 2024-04-08 14:15 修改: 2024-10-14 15:15
|
| openssl |
CVE-2024-41996 |
低危 |
1:3.2.2-6.el9_5 |
|
openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996
镜像层: sha256:3caeb274e0e15d415c7751227ffef4880be3b66a9b9594ef0244e65609090d0e
发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
|
| openssl |
CVE-2024-4741 |
低危 |
1:3.2.2-6.el9_5 |
|
openssl: Use After Free with SSL_free_buffers
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741
镜像层: sha256:3caeb274e0e15d415c7751227ffef4880be3b66a9b9594ef0244e65609090d0e
发布日期: 2024-11-13 11:15 修改: 2024-11-13 17:01
|
| openssl |
CVE-2024-5535 |
低危 |
1:3.2.2-6.el9_5 |
|
openssl: SSL_select_next_proto buffer overread
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535
镜像层: sha256:3caeb274e0e15d415c7751227ffef4880be3b66a9b9594ef0244e65609090d0e
发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
|
| openssl-libs |
CVE-2024-2511 |
低危 |
1:3.2.2-6.el9_5 |
|
openssl: Unbounded memory growth with session handling in TLSv1.3
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-04-08 14:15 修改: 2024-10-14 15:15
|
| openssl-libs |
CVE-2024-41996 |
低危 |
1:3.2.2-6.el9_5 |
|
openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
|
| openssl-libs |
CVE-2024-4741 |
低危 |
1:3.2.2-6.el9_5 |
|
openssl: Use After Free with SSL_free_buffers
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-11-13 11:15 修改: 2024-11-13 17:01
|
| openssl-libs |
CVE-2024-5535 |
低危 |
1:3.2.2-6.el9_5 |
|
openssl: SSL_select_next_proto buffer overread
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
|
| pcre2 |
CVE-2022-41409 |
低危 |
10.40-6.el9 |
|
pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2023-07-18 14:15 修改: 2023-07-27 03:46
|
| pcre2-syntax |
CVE-2022-41409 |
低危 |
10.40-6.el9 |
|
pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2023-07-18 14:15 修改: 2023-07-27 03:46
|
| shadow-utils |
CVE-2024-56433 |
低危 |
2:4.9-10.el9_5 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
|
| gawk |
CVE-2023-4156 |
低危 |
5.1.0-6.el9 |
|
gawk: heap out of bound read in builtin.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4156
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2023-09-25 18:15 修改: 2023-11-07 04:22
|
| sqlite-libs |
CVE-2023-36191 |
低危 |
3.34.1-7.el9_3 |
|
sqlite: CLI fault on missing -nonce
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36191
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2023-06-23 02:15 修改: 2023-11-07 04:16
|
| sqlite-libs |
CVE-2024-0232 |
低危 |
3.34.1-7.el9_3 |
|
sqlite: use-after-free bug in jsonParseAddNodeArray
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0232
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-01-16 14:15 修改: 2024-09-28 04:15
|
| curl-minimal |
CVE-2024-7264 |
低危 |
7.76.1-31.el9 |
|
curl: libcurl: ASN.1 date parser overread
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-07-31 08:15 修改: 2024-10-30 20:35
|
| glib2 |
CVE-2023-32636 |
低危 |
2.68.4-14.el9_4.1 |
|
glib: Timeout in fuzz_variant_text
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32636
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2023-09-14 20:15 修改: 2024-01-12 22:09
|
| gnupg2 |
CVE-2022-3219 |
低危 |
2.3.3-4.el9 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
|
| curl-minimal |
CVE-2024-9681 |
低危 |
7.76.1-31.el9 |
|
curl: HSTS subdomain overwrites parent cache entry
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681
镜像层: sha256:a377c2e7ffb99f8889e322b1fadcb448dc1c3c59615414d11218ddf1bd83671d
发布日期: 2024-11-06 08:15 修改: 2024-12-13 14:15
|
| libatomic |
CVE-2022-27943 |
低危 |
11.5.0-2.el9 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:3caeb274e0e15d415c7751227ffef4880be3b66a9b9594ef0244e65609090d0e
发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
|
| tar |
CVE-2023-39804 |
低危 |
2:1.34-7.el9 |
|
tar: Incorrectly handled extension attributes in PAX archives can lead to a crash
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39804
镜像层: sha256:3caeb274e0e15d415c7751227ffef4880be3b66a9b9594ef0244e65609090d0e
发布日期: 2024-03-27 04:15 修改: 2024-11-12 19:35
|