docker.io/percona:8.0.32-24-centos linux/amd64

docker.io/percona:8.0.32-24-centos - Trivy安全扫描结果扫描时间: 2026-06-11 11:56

全部漏洞信息

低危漏洞:40

中危漏洞:247

高危漏洞:159

严重漏洞:0

系统OS: oracle 9.2 扫描引擎: Trivy 扫描时间: 2026-06-11 11:56

docker.io/percona:8.0.32-24-centos (oracle 9.2) (oracle)

低危漏洞:38

中危漏洞:240

高危漏洞:155

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
curl	CVE-2023-38545	高危	7.76.1-23.el9_2.1	7.76.1-26.el9_3.2	curl: heap based buffer overflow in the SOCKS5 proxy handshake 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38545 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-10-18 04:15 修改: 2026-05-12 11:16
expat	CVE-2025-59375	高危	2.5.0-1.el9	2.5.0-5.el9_7.1	firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59375 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-09-15 03:15 修改: 2026-05-12 13:17
glibc	CVE-2023-4527	高危	2.34-60.0.1.el9	2.34-60.0.3.el9_2.7	glibc: Stack read overflow in getaddrinfo in no-aaaa mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-18 17:15 修改: 2026-05-12 11:16
glibc	CVE-2023-4806	高危	2.34-60.0.1.el9	2.34-60.0.3.el9_2.7	glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-18 17:15 修改: 2026-05-12 11:16
glibc	CVE-2023-4813	高危	2.34-60.0.1.el9	2.34-60.0.3.el9_2.7	glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-12 22:15 修改: 2025-09-26 12:15
glibc	CVE-2023-4911	高危	2.34-60.0.1.el9	2.34-60.0.3.el9_2.7	glibc: buffer overflow in ld.so leading to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-10-03 18:15 修改: 2026-05-12 16:24
glibc	CVE-2024-2961	高危	2.34-60.0.1.el9	2.34-100.0.1.el9_4.2	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-04-17 18:15 修改: 2026-05-12 12:16
glibc	CVE-2024-33599	高危	2.34-60.0.1.el9	2.34-100.0.1.el9_4.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-05-06 20:15 修改: 2026-05-12 12:16
glibc	CVE-2024-33600	高危	2.34-60.0.1.el9	2.34-100.0.1.el9_4.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-05-06 20:15 修改: 2026-05-12 12:16
glibc	CVE-2024-33601	高危	2.34-60.0.1.el9	2.34-100.0.1.el9_4.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-05-06 20:15 修改: 2026-05-12 12:16
glibc	CVE-2024-33602	高危	2.34-60.0.1.el9	2.34-100.0.1.el9_4.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-05-06 20:15 修改: 2026-05-12 12:16
glibc-common	CVE-2023-4527	高危	2.34-60.0.1.el9	2.34-60.0.3.el9_2.7	glibc: Stack read overflow in getaddrinfo in no-aaaa mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-18 17:15 修改: 2026-05-12 11:16
glibc-common	CVE-2023-4806	高危	2.34-60.0.1.el9	2.34-60.0.3.el9_2.7	glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-18 17:15 修改: 2026-05-12 11:16
glibc-common	CVE-2023-4813	高危	2.34-60.0.1.el9	2.34-60.0.3.el9_2.7	glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-12 22:15 修改: 2025-09-26 12:15
glibc-common	CVE-2023-4911	高危	2.34-60.0.1.el9	2.34-60.0.3.el9_2.7	glibc: buffer overflow in ld.so leading to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-10-03 18:15 修改: 2026-05-12 16:24
glibc-common	CVE-2024-2961	高危	2.34-60.0.1.el9	2.34-100.0.1.el9_4.2	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-04-17 18:15 修改: 2026-05-12 12:16
glibc-common	CVE-2024-33599	高危	2.34-60.0.1.el9	2.34-100.0.1.el9_4.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-05-06 20:15 修改: 2026-05-12 12:16
glibc-common	CVE-2024-33600	高危	2.34-60.0.1.el9	2.34-100.0.1.el9_4.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-05-06 20:15 修改: 2026-05-12 12:16
glibc-common	CVE-2024-33601	高危	2.34-60.0.1.el9	2.34-100.0.1.el9_4.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-05-06 20:15 修改: 2026-05-12 12:16
glibc-common	CVE-2024-33602	高危	2.34-60.0.1.el9	2.34-100.0.1.el9_4.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-05-06 20:15 修改: 2026-05-12 12:16
glibc-langpack-en	CVE-2023-4527	高危	2.34-60.0.1.el9	2.34-60.0.3.el9_2.7	glibc: Stack read overflow in getaddrinfo in no-aaaa mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-18 17:15 修改: 2026-05-12 11:16
glibc-langpack-en	CVE-2023-4806	高危	2.34-60.0.1.el9	2.34-60.0.3.el9_2.7	glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-18 17:15 修改: 2026-05-12 11:16
glibc-langpack-en	CVE-2023-4813	高危	2.34-60.0.1.el9	2.34-60.0.3.el9_2.7	glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-12 22:15 修改: 2025-09-26 12:15
glibc-langpack-en	CVE-2023-4911	高危	2.34-60.0.1.el9	2.34-60.0.3.el9_2.7	glibc: buffer overflow in ld.so leading to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-10-03 18:15 修改: 2026-05-12 16:24
glibc-langpack-en	CVE-2024-2961	高危	2.34-60.0.1.el9	2.34-100.0.1.el9_4.2	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-04-17 18:15 修改: 2026-05-12 12:16
glibc-langpack-en	CVE-2024-33599	高危	2.34-60.0.1.el9	2.34-100.0.1.el9_4.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-05-06 20:15 修改: 2026-05-12 12:16
glibc-langpack-en	CVE-2024-33600	高危	2.34-60.0.1.el9	2.34-100.0.1.el9_4.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-05-06 20:15 修改: 2026-05-12 12:16
glibc-langpack-en	CVE-2024-33601	高危	2.34-60.0.1.el9	2.34-100.0.1.el9_4.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-05-06 20:15 修改: 2026-05-12 12:16
glibc-langpack-en	CVE-2024-33602	高危	2.34-60.0.1.el9	2.34-100.0.1.el9_4.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-05-06 20:15 修改: 2026-05-12 12:16
gnupg2	CVE-2025-68973	高危	2.3.3-2.el9_0	2.3.3-5.el9_7	GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
krb5-libs	CVE-2024-3596	高危	1.20.1-8.0.1.el9	1.21.1-4.0.1.el9_5	freeradius: forgery attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-3596 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-07-09 12:15 修改: 2026-05-12 12:16
krb5-libs	CVE-2024-37371	高危	1.20.1-8.0.1.el9	1.21.1-2.0.1.el9_4	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-06-28 23:15 修改: 2026-05-12 12:16
libarchive	CVE-2025-5914	高危	3.5.3-4.el9	3.5.3-6.el9_6	libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5914 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-09 20:15 修改: 2026-02-05 20:15
libarchive	CVE-2026-4111	高危	3.5.3-4.el9	3.5.3-7.el9_7	libarchive: Infinite Loop Denial of Service in RAR5 Decompression via archive_read_data() in libarchive 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4111 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-03-13 19:55 修改: 2026-05-20 17:16
libarchive	CVE-2026-4424	高危	3.5.3-4.el9	3.5.3-9.el9_7	libarchive: libarchive: Information disclosure via heap out-of-bounds read in RAR archive processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4424 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-03-19 15:16 修改: 2026-06-04 18:16
libarchive	CVE-2026-5121	高危	3.5.3-4.el9	3.5.3-9.el9_7	libarchive: libarchive: Arbitrary code execution via integer overflow in ISO9660 image processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5121 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-03-30 08:16 修改: 2026-06-04 19:16
libbrotli	CVE-2025-6176	高危	1.0.9-6.el9	1.0.9-9.el9_7	Scrapy: python-scrapy: brotli: Python brotli decompression bomb DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6176 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-10-31 00:15 修改: 2026-04-15 00:35
libcap	CVE-2026-4878	高危	2.48-8.el9	2.48-10.el9_7.1	libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file() 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-09 16:16 修改: 2026-06-08 03:16
libcurl	CVE-2023-38545	高危	7.76.1-23.el9_2.1	7.76.1-26.el9_3.2	curl: heap based buffer overflow in the SOCKS5 proxy handshake 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38545 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-10-18 04:15 修改: 2026-05-12 11:16
libgcc	CVE-2022-40982	高危	11.3.1-4.3.0.1.el9	11.3.1-4.3.0.4.el9	hw: Intel: Gather Data Sampling (GDS) side channel vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40982 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-08-11 03:15 修改: 2024-11-21 07:22
libgomp	CVE-2022-40982	高危	11.3.1-4.3.0.1.el9	11.3.1-4.3.0.4.el9	hw: Intel: Gather Data Sampling (GDS) side channel vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40982 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-08-11 03:15 修改: 2024-11-21 07:22
libnghttp2	CVE-2023-44487	高危	1.43.0-5.el9	1.43.0-5.el9_3.1	HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-10-10 14:15 修改: 2026-05-12 15:10
libnghttp2	CVE-2026-27135	高危	1.43.0-5.el9	1.43.0-6.el9_7.1	nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27135 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-03-18 18:16 修改: 2026-05-13 22:16
libstdc++	CVE-2022-40982	高危	11.3.1-4.3.0.1.el9	11.3.1-4.3.0.4.el9	hw: Intel: Gather Data Sampling (GDS) side channel vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40982 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-08-11 03:15 修改: 2024-11-21 07:22
libxml2	CVE-2024-56171	高危	2.9.13-3.el9_1	2.9.13-6.el9_5.2	libxml2: Use-After-Free in libxml2 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56171 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-02-18 22:15 修改: 2025-11-03 21:17
libxml2	CVE-2025-24928	高危	2.9.13-3.el9_1	2.9.13-6.el9_5.2	libxml2: Stack-based buffer overflow in xmlSnprintfElements of libxml2 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24928 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-02-18 23:15 修改: 2025-11-03 22:18
libxml2	CVE-2025-49794	高危	2.9.13-3.el9_1	2.9.13-10.el9_6	libxml: Heap use after free (UAF) leads to Denial of service (DoS) 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49794 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-16 16:15 修改: 2026-06-02 14:16
libxml2	CVE-2025-49796	高危	2.9.13-3.el9_1	2.9.13-10.el9_6	libxml: Type confusion leads to Denial of service (DoS) 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49796 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-16 16:15 修改: 2026-06-02 14:16
libxml2	CVE-2025-6021	高危	2.9.13-3.el9_1	2.9.13-10.el9_6	libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6021 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-12 13:15 修改: 2026-05-12 13:17
libxml2	CVE-2025-7425	高危	2.9.13-3.el9_1	2.9.13-11.el9_6	libxslt: libxml2: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7425 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-10 14:15 修改: 2026-05-12 13:17
openssh	CVE-2023-38408	高危	8.7p1-29.el9_2	8.7p1-30.el9_2	openssh: Remote code execution in ssh-agent PKCS#11 support 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38408 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-07-20 03:15 修改: 2024-11-21 08:13
openssh	CVE-2024-6387	高危	8.7p1-29.el9_2	8.7p1-38.0.2.el9_4.1	openssh: regreSSHion - race condition in SSH allows RCE/DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6387 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-07-01 13:15 修改: 2026-05-12 12:17
openssh	CVE-2026-3497	高危	8.7p1-29.el9_2	8.7p1-48.0.1.el9_7	openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3497 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-03-12 19:16 修改: 2026-06-02 19:43
openssh	CVE-2026-35385	高危	8.7p1-29.el9_2	8.7p1-49.0.1.el9_7	OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35385 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:02
openssh	CVE-2026-35386	高危	8.7p1-29.el9_2	8.7p1-49.0.1.el9_7	OpenSSH: OpenSSH: Arbitrary command execution via shell metacharacters in username 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35386 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:03
openssh	CVE-2026-35387	高危	8.7p1-29.el9_2	8.7p1-49.0.1.el9_7	OpenSSH: OpenSSH: Information disclosure due to unintended cryptographic algorithm usage 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35387 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:05
openssh	CVE-2026-35388	高危	8.7p1-29.el9_2	8.7p1-49.0.1.el9_7	OpenSSH: OpenSSH: Low integrity impact from unconfirmed proxy-mode multiplexing sessions 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35388 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:12
openssh	CVE-2026-35414	高危	8.7p1-29.el9_2	8.7p1-49.0.1.el9_7	OpenSSH: OpenSSH: Security bypass via mishandling of authorized_keys principals option 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35414 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-02 18:16 修改: 2026-04-10 19:36
openssh-clients	CVE-2023-38408	高危	8.7p1-29.el9_2	8.7p1-30.el9_2	openssh: Remote code execution in ssh-agent PKCS#11 support 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38408 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-07-20 03:15 修改: 2024-11-21 08:13
openssh-clients	CVE-2024-6387	高危	8.7p1-29.el9_2	8.7p1-38.0.2.el9_4.1	openssh: regreSSHion - race condition in SSH allows RCE/DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6387 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-07-01 13:15 修改: 2026-05-12 12:17
openssh-clients	CVE-2026-3497	高危	8.7p1-29.el9_2	8.7p1-48.0.1.el9_7	openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3497 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-03-12 19:16 修改: 2026-06-02 19:43
openssh-clients	CVE-2026-35385	高危	8.7p1-29.el9_2	8.7p1-49.0.1.el9_7	OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35385 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:02
openssh-clients	CVE-2026-35386	高危	8.7p1-29.el9_2	8.7p1-49.0.1.el9_7	OpenSSH: OpenSSH: Arbitrary command execution via shell metacharacters in username 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35386 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:03
openssh-clients	CVE-2026-35387	高危	8.7p1-29.el9_2	8.7p1-49.0.1.el9_7	OpenSSH: OpenSSH: Information disclosure due to unintended cryptographic algorithm usage 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35387 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:05
openssh-clients	CVE-2026-35388	高危	8.7p1-29.el9_2	8.7p1-49.0.1.el9_7	OpenSSH: OpenSSH: Low integrity impact from unconfirmed proxy-mode multiplexing sessions 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35388 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:12
openssh-clients	CVE-2026-35414	高危	8.7p1-29.el9_2	8.7p1-49.0.1.el9_7	OpenSSH: OpenSSH: Security bypass via mishandling of authorized_keys principals option 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35414 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-02 18:16 修改: 2026-04-10 19:36
openssh-server	CVE-2023-38408	高危	8.7p1-29.el9_2	8.7p1-30.el9_2	openssh: Remote code execution in ssh-agent PKCS#11 support 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38408 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-07-20 03:15 修改: 2024-11-21 08:13
openssh-server	CVE-2024-6387	高危	8.7p1-29.el9_2	8.7p1-38.0.2.el9_4.1	openssh: regreSSHion - race condition in SSH allows RCE/DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6387 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-07-01 13:15 修改: 2026-05-12 12:17
openssh-server	CVE-2026-3497	高危	8.7p1-29.el9_2	8.7p1-48.0.1.el9_7	openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3497 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-03-12 19:16 修改: 2026-06-02 19:43
openssh-server	CVE-2026-35385	高危	8.7p1-29.el9_2	8.7p1-49.0.1.el9_7	OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35385 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:02
openssh-server	CVE-2026-35386	高危	8.7p1-29.el9_2	8.7p1-49.0.1.el9_7	OpenSSH: OpenSSH: Arbitrary command execution via shell metacharacters in username 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35386 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:03
openssh-server	CVE-2026-35387	高危	8.7p1-29.el9_2	8.7p1-49.0.1.el9_7	OpenSSH: OpenSSH: Information disclosure due to unintended cryptographic algorithm usage 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35387 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:05
openssh-server	CVE-2026-35388	高危	8.7p1-29.el9_2	8.7p1-49.0.1.el9_7	OpenSSH: OpenSSH: Low integrity impact from unconfirmed proxy-mode multiplexing sessions 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35388 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:12
openssh-server	CVE-2026-35414	高危	8.7p1-29.el9_2	8.7p1-49.0.1.el9_7	OpenSSH: OpenSSH: Security bypass via mishandling of authorized_keys principals option 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35414 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-02 18:16 修改: 2026-04-10 19:36
openssl	CVE-2023-5363	高危	1:3.0.7-6.0.1.el9_2	1:3.0.7-25.0.1.el9_3	openssl: Incorrect cipher key and IV length processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5363 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-10-25 18:17 修改: 2026-05-12 11:16
openssl	CVE-2024-12797	高危	1:3.0.7-6.0.1.el9_2	1:3.2.2-6.0.1.el9_5.1	openssl: RFC7250 handshakes with unauthenticated servers don't abort as expected 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12797 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-02-11 16:15 修改: 2026-04-15 00:35
openssl	CVE-2024-5535	高危	1:3.0.7-6.0.1.el9_2	1:3.2.2-6.0.1.el9_5	openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-06-27 11:15 修改: 2026-05-12 12:17
openssl	CVE-2025-11187	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Arbitrary code execution or denial of service through crafted PKCS#12 file 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11187 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-03-20 14:16
openssl	CVE-2025-15467	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-06-09 10:16
openssl	CVE-2025-15468	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15468 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:38
openssl	CVE-2025-15469	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Data integrity bypass in `openssl dgst` command due to silent truncation 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15469 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:37
openssl	CVE-2025-66199	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service due to excessive memory allocation in TLS 1.3 certificate compression 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66199 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:37
openssl	CVE-2025-68160	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl	CVE-2025-69418	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl	CVE-2025-69420	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service via malformed TimeStamp Response 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl	CVE-2025-69421	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl	CVE-2026-22795	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl	CVE-2026-22796	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl-devel	CVE-2023-5363	高危	1:3.0.7-6.0.1.el9_2	1:3.0.7-25.0.1.el9_3	openssl: Incorrect cipher key and IV length processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5363 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-10-25 18:17 修改: 2026-05-12 11:16
openssl-devel	CVE-2024-12797	高危	1:3.0.7-6.0.1.el9_2	1:3.2.2-6.0.1.el9_5.1	openssl: RFC7250 handshakes with unauthenticated servers don't abort as expected 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12797 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2025-02-11 16:15 修改: 2026-04-15 00:35
openssl-devel	CVE-2024-5535	高危	1:3.0.7-6.0.1.el9_2	1:3.2.2-6.0.1.el9_5	openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2024-06-27 11:15 修改: 2026-05-12 12:17
openssl-devel	CVE-2025-11187	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Arbitrary code execution or denial of service through crafted PKCS#12 file 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11187 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-01-27 16:16 修改: 2026-03-20 14:16
openssl-devel	CVE-2025-15467	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-01-27 16:16 修改: 2026-06-09 10:16
openssl-devel	CVE-2025-15468	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15468 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:38
openssl-devel	CVE-2025-15469	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Data integrity bypass in `openssl dgst` command due to silent truncation 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15469 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:37
openssl-devel	CVE-2025-66199	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service due to excessive memory allocation in TLS 1.3 certificate compression 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66199 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:37
openssl-devel	CVE-2025-68160	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl-devel	CVE-2025-69418	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl-devel	CVE-2025-69420	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service via malformed TimeStamp Response 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl-devel	CVE-2025-69421	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl-devel	CVE-2026-22795	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl-devel	CVE-2026-22796	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl-libs	CVE-2023-5363	高危	1:3.0.7-6.0.1.el9_2	1:3.0.7-25.0.1.el9_3	openssl: Incorrect cipher key and IV length processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5363 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-10-25 18:17 修改: 2026-05-12 11:16
openssl-libs	CVE-2024-12797	高危	1:3.0.7-6.0.1.el9_2	1:3.2.2-6.0.1.el9_5.1	openssl: RFC7250 handshakes with unauthenticated servers don't abort as expected 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12797 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-02-11 16:15 修改: 2026-04-15 00:35
openssl-libs	CVE-2024-5535	高危	1:3.0.7-6.0.1.el9_2	1:3.2.2-6.0.1.el9_5	openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-06-27 11:15 修改: 2026-05-12 12:17
openssl-libs	CVE-2025-11187	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Arbitrary code execution or denial of service through crafted PKCS#12 file 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11187 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-03-20 14:16
openssl-libs	CVE-2025-15467	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-06-09 10:16
openssl-libs	CVE-2025-15468	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15468 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:38
openssl-libs	CVE-2025-15469	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Data integrity bypass in `openssl dgst` command due to silent truncation 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15469 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:37
openssl-libs	CVE-2025-66199	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service due to excessive memory allocation in TLS 1.3 certificate compression 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66199 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:37
openssl-libs	CVE-2025-68160	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl-libs	CVE-2025-69418	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl-libs	CVE-2025-69420	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service via malformed TimeStamp Response 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl-libs	CVE-2025-69421	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl-libs	CVE-2026-22795	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl-libs	CVE-2026-22796	高危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
pam	CVE-2024-10963	高危	1.5.1-14.el9	1.5.1-22.0.1.el9_5	pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-11-07 16:15 修改: 2026-04-15 00:35
pam	CVE-2025-6020	高危	1.5.1-14.el9	1.5.1-26.0.1.el9_6	linux-pam: Linux-pam directory Traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-17 13:15 修改: 2026-05-12 13:17
pam	CVE-2025-8941	高危	1.5.1-14.el9	1.5.1-26.0.1.el9_6	linux-pam: Incomplete fix for CVE-2025-6020 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8941 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-08-13 15:15 修改: 2026-04-15 00:35
python3	CVE-2023-40217	高危	3.9.16-1.el9_2.1	3.9.16-1.el9_2.2	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-08-25 01:15 修改: 2025-11-03 22:16
python3	CVE-2023-6597	高危	3.9.16-1.el9_2.1	3.9.18-3.el9_4.1	python: Path traversal on tempfile.TemporaryDirectory 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-03-19 16:15 修改: 2026-04-15 00:35
python3	CVE-2024-11168	高危	3.9.16-1.el9_2.1	3.9.21-1.el9_5	python: Improper validation of IPv6 and IPvFuture addresses 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11168 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-11-12 22:15 修改: 2026-04-15 00:35
python3	CVE-2024-12718	高危	3.9.16-1.el9_2.1	3.9.21-2.el9_6.1	cpython: python: Bypass extraction filter to modify file metadata outside extraction directory 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12718 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-03 13:15 修改: 2026-04-15 00:35
python3	CVE-2024-5642	高危	3.9.16-1.el9_2.1	3.9.25-2.0.1.el9_7	python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5642 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-06-27 21:15 修改: 2026-04-15 00:35
python3	CVE-2024-9287	高危	3.9.16-1.el9_2.1	3.9.21-1.el9_5	python: Virtual environment (venv) activation scripts don't quote paths 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-10-22 17:15 修改: 2025-11-03 23:17
python3	CVE-2025-4138	高危	3.9.16-1.el9_2.1	3.9.21-2.el9_6.1	cpython: python: Bypassing extraction filter to create symlinks to arbitrary targets outside extraction directory 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4138 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-03 13:15 修改: 2026-04-15 00:35
python3	CVE-2025-4330	高危	3.9.16-1.el9_2.1	3.9.21-2.el9_6.1	cpython: python: Extraction filter bypass for linking outside extraction directory 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4330 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-03 13:15 修改: 2026-04-15 00:35
python3	CVE-2025-4435	高危	3.9.16-1.el9_2.1	3.9.21-2.el9_6.1	cpython: Tarfile extracts filtered members when errorlevel=0 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4435 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-03 13:15 修改: 2026-04-15 00:35
python3	CVE-2025-4517	高危	3.9.16-1.el9_2.1	3.9.21-2.el9_6.1	python: cpython: Arbitrary writes via tarfile realpath overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4517 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-03 13:15 修改: 2026-04-15 00:35
python3	CVE-2025-6069	高危	3.9.16-1.el9_2.1	3.9.25-2.0.1.el9_7	cpython: Python HTMLParser quadratic complexity 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6069 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-17 14:15 修改: 2026-04-15 00:35
python3	CVE-2025-6075	高危	3.9.16-1.el9_2.1	3.9.25-2.0.1.el9_7	python: Quadratic complexity in os.path.expandvars() with user-controlled template 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6075 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-10-31 17:15 修改: 2026-02-04 19:05
python3	CVE-2026-4519	高危	3.9.16-1.el9_2.1	3.9.25-3.0.1.el9_7.2	python: Python: Command-line option injection in webbrowser.open() via crafted URLs 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-03-20 15:16 修改: 2026-04-16 14:53
python3	CVE-2026-4786	高危	3.9.16-1.el9_2.1	3.9.25-3.0.1.el9_7.3	python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-13 22:16 修改: 2026-04-29 16:16
python3	CVE-2026-6100	高危	3.9.16-1.el9_2.1	3.9.25-3.0.1.el9_7.3	python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-13 18:16 修改: 2026-04-17 15:18
python3-libs	CVE-2023-40217	高危	3.9.16-1.el9_2.1	3.9.16-1.el9_2.2	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-08-25 01:15 修改: 2025-11-03 22:16
python3-libs	CVE-2023-6597	高危	3.9.16-1.el9_2.1	3.9.18-3.el9_4.1	python: Path traversal on tempfile.TemporaryDirectory 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-03-19 16:15 修改: 2026-04-15 00:35
python3-libs	CVE-2024-11168	高危	3.9.16-1.el9_2.1	3.9.21-1.el9_5	python: Improper validation of IPv6 and IPvFuture addresses 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11168 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-11-12 22:15 修改: 2026-04-15 00:35
python3-libs	CVE-2024-12718	高危	3.9.16-1.el9_2.1	3.9.21-2.el9_6.1	cpython: python: Bypass extraction filter to modify file metadata outside extraction directory 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12718 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-03 13:15 修改: 2026-04-15 00:35
python3-libs	CVE-2024-5642	高危	3.9.16-1.el9_2.1	3.9.25-2.0.1.el9_7	python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5642 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-06-27 21:15 修改: 2026-04-15 00:35
python3-libs	CVE-2024-9287	高危	3.9.16-1.el9_2.1	3.9.21-1.el9_5	python: Virtual environment (venv) activation scripts don't quote paths 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-10-22 17:15 修改: 2025-11-03 23:17
python3-libs	CVE-2025-4138	高危	3.9.16-1.el9_2.1	3.9.21-2.el9_6.1	cpython: python: Bypassing extraction filter to create symlinks to arbitrary targets outside extraction directory 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4138 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-03 13:15 修改: 2026-04-15 00:35
python3-libs	CVE-2025-4330	高危	3.9.16-1.el9_2.1	3.9.21-2.el9_6.1	cpython: python: Extraction filter bypass for linking outside extraction directory 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4330 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-03 13:15 修改: 2026-04-15 00:35
python3-libs	CVE-2025-4435	高危	3.9.16-1.el9_2.1	3.9.21-2.el9_6.1	cpython: Tarfile extracts filtered members when errorlevel=0 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4435 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-03 13:15 修改: 2026-04-15 00:35
python3-libs	CVE-2025-4517	高危	3.9.16-1.el9_2.1	3.9.21-2.el9_6.1	python: cpython: Arbitrary writes via tarfile realpath overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4517 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-03 13:15 修改: 2026-04-15 00:35
python3-libs	CVE-2025-6069	高危	3.9.16-1.el9_2.1	3.9.25-2.0.1.el9_7	cpython: Python HTMLParser quadratic complexity 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6069 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-17 14:15 修改: 2026-04-15 00:35
python3-libs	CVE-2025-6075	高危	3.9.16-1.el9_2.1	3.9.25-2.0.1.el9_7	python: Quadratic complexity in os.path.expandvars() with user-controlled template 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6075 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-10-31 17:15 修改: 2026-02-04 19:05
python3-libs	CVE-2026-4519	高危	3.9.16-1.el9_2.1	3.9.25-3.0.1.el9_7.2	python: Python: Command-line option injection in webbrowser.open() via crafted URLs 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-03-20 15:16 修改: 2026-04-16 14:53
python3-libs	CVE-2026-4786	高危	3.9.16-1.el9_2.1	3.9.25-3.0.1.el9_7.3	python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-13 22:16 修改: 2026-04-29 16:16
python3-libs	CVE-2026-6100	高危	3.9.16-1.el9_2.1	3.9.25-3.0.1.el9_7.3	python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-13 18:16 修改: 2026-04-17 15:18
sqlite-libs	CVE-2025-6965	高危	3.34.1-6.el9_1	3.34.1-9.el9_7	sqlite: Integer Truncation in SQLite 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6965 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-15 14:15 修改: 2026-04-14 10:16
vim-minimal	CVE-2026-25749	高危	2:8.2.2637-20.0.1.el9_1	2:8.2.2637-23.0.1.el9_7.1	vim: Vim: Arbitrary code execution via 'helpfile' option processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25749 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-02-06 23:15 修改: 2026-06-09 18:28
vim-minimal	CVE-2026-28417	高危	2:8.2.2637-20.0.1.el9_1	2:8.2.2637-23.0.1.el9_7.2	vim: Vim: Arbitrary code execution via OS command injection in the netrw plugin 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28417 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-02-27 22:16 修改: 2026-03-03 17:50
vim-minimal	CVE-2026-28421	高危	2:8.2.2637-20.0.1.el9_1	2:8.2.2637-23.0.1.el9_7.2	vim: Vim: Denial of service and information disclosure via crafted swap file 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28421 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-02-27 22:16 修改: 2026-03-04 20:47
vim-minimal	CVE-2026-33412	高危	2:8.2.2637-20.0.1.el9_1	2:8.2.2637-23.0.1.el9_7.2	vim: Vim: Arbitrary code execution via command injection in glob() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33412 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-03-24 20:16 修改: 2026-03-25 21:59
vim-minimal	CVE-2026-34982	高危	2:8.2.2637-20.0.1.el9_1	2:8.2.2637-23.0.1.el9_7.3	vim: arbitrary command execution via modeline sandbox bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34982 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-04-06 16:16 修改: 2026-04-22 20:10
libxml2	CVE-2024-25062	中危	2.9.13-3.el9_1	2.9.13-6.el9_4	libxml2: use-after-free in XMLReader 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25062 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-02-04 16:15 修改: 2025-11-03 22:16
libxml2	CVE-2025-32414	中危	2.9.13-3.el9_1	2.9.13-12.el9_6	libxml2: Out-of-Bounds Read in libxml2 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32414 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-04-08 03:15 修改: 2025-11-03 20:18
libxml2	CVE-2025-32415	中危	2.9.13-3.el9_1	2.9.13-12.el9_6	libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32415 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-04-17 17:15 修改: 2025-11-03 20:18
libxml2	CVE-2025-9714	中危	2.9.13-3.el9_1	2.9.13-14.el9_7	libxslt: libxml2: Inifinite recursion at exsltDynMapFunction function in libexslt/dynamic.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9714 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-09-10 19:15 修改: 2026-05-12 13:17
ncurses	CVE-2023-29491	中危	6.2-8.20210508.el9	6.2-10.20210508.el9	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-04-14 01:15 修改: 2025-11-04 19:15
ncurses-libs	CVE-2023-29491	中危	6.2-8.20210508.el9	6.2-10.20210508.el9	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-04-14 01:15 修改: 2025-11-04 19:15
expat	CVE-2024-45490	中危	2.5.0-1.el9	2.5.0-2.el9_4.1	libexpat: Negative Length Parsing Vulnerability in libexpat 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45490 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-08-30 03:15 修改: 2026-05-12 12:17
expat	CVE-2024-45491	中危	2.5.0-1.el9	2.5.0-2.el9_4.1	libexpat: Integer Overflow or Wraparound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45491 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-08-30 03:15 修改: 2026-05-12 12:17
expat	CVE-2024-45492	中危	2.5.0-1.el9	2.5.0-2.el9_4.1	libexpat: integer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45492 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-08-30 03:15 修改: 2026-05-12 12:17
glibc-common	CVE-2025-0395	中危	2.34-60.0.1.el9	2.34-125.0.1.el9_5.8	glibc: buffer overflow in the GNU C Library's assert() 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0395 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-01-22 13:15 修改: 2026-05-12 13:16
glibc-common	CVE-2025-15281	中危	2.34-60.0.1.el9	2.34-231.0.1.el9_7.10	glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-20 14:16 修改: 2026-02-05 17:43
glibc-common	CVE-2025-4802	中危	2.34-60.0.1.el9	2.34-168.0.1.el9_6.19	glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4802 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-05-16 20:15 修改: 2025-11-03 20:19
glibc-common	CVE-2025-5702	中危	2.34-60.0.1.el9	2.34-168.0.1.el9_6.20	glibc: Vector register overwrite bug in glibc 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5702 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-05 19:15 修改: 2025-10-01 15:37
glibc-common	CVE-2025-8058	中危	2.34-60.0.1.el9	2.34-168.0.1.el9_6.23	glibc: Double free in glibc 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8058 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-23 20:15 修改: 2026-04-15 00:35
openssh	CVE-2023-48795	中危	8.7p1-29.el9_2	8.7p1-34.el9_3.3	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-12-18 16:15 修改: 2026-05-12 11:16
openssh	CVE-2023-51385	中危	8.7p1-29.el9_2	8.7p1-34.el9_3.3	openssh: potential command injection via shell metacharacters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51385 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-12-18 19:15 修改: 2026-05-12 12:16
openssh	CVE-2024-6409	中危	8.7p1-29.el9_2	8.7p1-38.0.2.el9_4.4	openssh: Possible remote code execution due to a race condition in signal handling affecting Red Hat Enterprise Linux 9 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6409 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-07-08 18:15 修改: 2026-04-15 00:35
openssh	CVE-2025-26465	中危	8.7p1-29.el9_2	8.7p1-45.0.2.el9	openssh: Machine-in-the-middle attack if VerifyHostKeyDNS is enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-26465 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-02-18 19:15 修改: 2026-05-12 13:16
openssh	CVE-2025-61984	中危	8.7p1-29.el9_2	8.7p1-47.0.1.el9_7	openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61984 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
openssh	CVE-2025-61985	中危	8.7p1-29.el9_2	8.7p1-47.0.1.el9_7	openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61985 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
glibc-common	CVE-2026-0861	中危	2.34-60.0.1.el9	2.34-231.0.1.el9_7.10	glibc: Integer overflow in memalign leads to heap corruption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-14 21:15 修改: 2026-02-03 18:26
glibc-common	CVE-2026-0915	中危	2.34-60.0.1.el9	2.34-231.0.1.el9_7.10	glibc: glibc: Information disclosure via zero-valued network query 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-15 22:16 修改: 2026-01-23 19:36
expat	CVE-2024-50602	中危	2.5.0-1.el9	2.5.0-3.el9_5.1	libexpat: expat: DoS via XML_ResumeParser 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50602 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-10-27 05:15 修改: 2025-10-15 17:54
expat	CVE-2024-8176	中危	2.5.0-1.el9	2.5.0-5.el9_6	libexpat: expat: Improper Restriction of XML Entity Expansion Depth in libexpat 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8176 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-03-14 09:15 修改: 2026-04-15 00:35
glib2	CVE-2024-34397	中危	2.68.4-6.el9	2.68.4-14.el9_4.1	glib2: Signal subscription vulnerabilities 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34397 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-05-07 18:15 修改: 2026-05-12 12:16
glib2	CVE-2024-52533	中危	2.68.4-6.el9	2.68.4-16.el9_6.2	glib: buffer overflow in set_connect_msg() 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52533 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-11-11 23:15 修改: 2025-06-17 01:23
glib2	CVE-2025-13601	中危	2.68.4-6.el9	2.68.4-18.el9_7.1	glib: Integer overflow in in g_escape_uri_string() 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13601 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-11-26 15:15 修改: 2026-06-02 14:16
glib2	CVE-2025-14087	中危	2.68.4-6.el9	2.68.4-18.el9_7.2	glib: GLib: Buffer underflow in GVariant parser leads to heap corruption 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14087 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-12-10 09:15 修改: 2026-06-02 20:16
openssh-clients	CVE-2023-48795	中危	8.7p1-29.el9_2	8.7p1-34.el9_3.3	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-12-18 16:15 修改: 2026-05-12 11:16
openssh-clients	CVE-2023-51385	中危	8.7p1-29.el9_2	8.7p1-34.el9_3.3	openssh: potential command injection via shell metacharacters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51385 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-12-18 19:15 修改: 2026-05-12 12:16
openssh-clients	CVE-2024-6409	中危	8.7p1-29.el9_2	8.7p1-38.0.2.el9_4.4	openssh: Possible remote code execution due to a race condition in signal handling affecting Red Hat Enterprise Linux 9 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6409 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-07-08 18:15 修改: 2026-04-15 00:35
openssh-clients	CVE-2025-26465	中危	8.7p1-29.el9_2	8.7p1-45.0.2.el9	openssh: Machine-in-the-middle attack if VerifyHostKeyDNS is enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-26465 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-02-18 19:15 修改: 2026-05-12 13:16
openssh-clients	CVE-2025-61984	中危	8.7p1-29.el9_2	8.7p1-47.0.1.el9_7	openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61984 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
openssh-clients	CVE-2025-61985	中危	8.7p1-29.el9_2	8.7p1-47.0.1.el9_7	openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61985 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
glib2	CVE-2025-14512	中危	2.68.4-6.el9	2.68.4-18.el9_7.2	glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14512 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-12-11 07:16 修改: 2026-06-02 20:16
glib2	CVE-2025-4373	中危	2.68.4-6.el9	2.68.4-16.el9_6.2	glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4373 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-05-06 15:16 修改: 2026-05-12 13:17
curl	CVE-2023-27533	中危	7.76.1-23.el9_2.1	7.76.1-26.el9	curl: TELNET option IAC injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27533 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-03-30 20:15 修改: 2026-02-13 21:16
glibc-langpack-en	CVE-2025-0395	中危	2.34-60.0.1.el9	2.34-125.0.1.el9_5.8	glibc: buffer overflow in the GNU C Library's assert() 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0395 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-01-22 13:15 修改: 2026-05-12 13:16
glibc-langpack-en	CVE-2025-15281	中危	2.34-60.0.1.el9	2.34-231.0.1.el9_7.10	glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-20 14:16 修改: 2026-02-05 17:43
glibc-langpack-en	CVE-2025-4802	中危	2.34-60.0.1.el9	2.34-168.0.1.el9_6.19	glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4802 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-05-16 20:15 修改: 2025-11-03 20:19
glibc-langpack-en	CVE-2025-5702	中危	2.34-60.0.1.el9	2.34-168.0.1.el9_6.20	glibc: Vector register overwrite bug in glibc 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5702 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-05 19:15 修改: 2025-10-01 15:37
glibc-langpack-en	CVE-2025-8058	中危	2.34-60.0.1.el9	2.34-168.0.1.el9_6.23	glibc: Double free in glibc 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8058 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-23 20:15 修改: 2026-04-15 00:35
openssh-server	CVE-2023-48795	中危	8.7p1-29.el9_2	8.7p1-34.el9_3.3	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-12-18 16:15 修改: 2026-05-12 11:16
openssh-server	CVE-2023-51385	中危	8.7p1-29.el9_2	8.7p1-34.el9_3.3	openssh: potential command injection via shell metacharacters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51385 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-12-18 19:15 修改: 2026-05-12 12:16
openssh-server	CVE-2024-6409	中危	8.7p1-29.el9_2	8.7p1-38.0.2.el9_4.4	openssh: Possible remote code execution due to a race condition in signal handling affecting Red Hat Enterprise Linux 9 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6409 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-07-08 18:15 修改: 2026-04-15 00:35
openssh-server	CVE-2025-26465	中危	8.7p1-29.el9_2	8.7p1-45.0.2.el9	openssh: Machine-in-the-middle attack if VerifyHostKeyDNS is enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-26465 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-02-18 19:15 修改: 2026-05-12 13:16
openssh-server	CVE-2025-61984	中危	8.7p1-29.el9_2	8.7p1-47.0.1.el9_7	openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61984 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
openssh-server	CVE-2025-61985	中危	8.7p1-29.el9_2	8.7p1-47.0.1.el9_7	openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61985 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
glibc-langpack-en	CVE-2026-0861	中危	2.34-60.0.1.el9	2.34-231.0.1.el9_7.10	glibc: Integer overflow in memalign leads to heap corruption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-14 21:15 修改: 2026-02-03 18:26
glibc-langpack-en	CVE-2026-0915	中危	2.34-60.0.1.el9	2.34-231.0.1.el9_7.10	glibc: glibc: Information disclosure via zero-valued network query 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-15 22:16 修改: 2026-01-23 19:36
gmp	CVE-2021-43618	中危	1:6.2.0-10.el9	1:6.2.0-13.el9	gmp: Integer overflow and resultant buffer overflow via crafted input 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43618 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2021-11-15 04:15 修改: 2024-11-21 06:29
curl	CVE-2023-27534	中危	7.76.1-23.el9_2.1	7.76.1-26.el9	curl: SFTP path ~ resolving discrepancy 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-03-30 20:15 修改: 2025-04-23 17:16
gnutls	CVE-2023-5981	中危	3.7.6-20.el9_2	3.7.6-23.el9_3.3	gnutls: timing side-channel in the RSA-PSK authentication 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5981 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-11-28 12:15 修改: 2026-03-25 20:01
gnutls	CVE-2024-0553	中危	3.7.6-20.el9_2	3.7.6-23.el9_3.3	gnutls: incomplete fix for CVE-2023-5981 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0553 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-01-16 12:15 修改: 2026-03-24 12:16
gnutls	CVE-2024-0567	中危	3.7.6-20.el9_2	3.7.6-23.el9_3.3	gnutls: rejects certificate chain with distributed trust 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0567 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-01-16 14:15 修改: 2024-11-21 08:46
gnutls	CVE-2024-12243	中危	3.7.6-20.el9_2	3.8.3-6.el9	gnutls: GnuTLS Impacted by Inefficient DER Decoding in libtasn1 Leading to Remote DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12243 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-02-10 16:15 修改: 2026-05-12 12:16
gnutls	CVE-2024-28834	中危	3.7.6-20.el9_2	3.8.3-4.el9_4	gnutls: vulnerable to Minerva side-channel information leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28834 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-03-21 14:15 修改: 2026-04-15 00:35
gnutls	CVE-2024-28835	中危	3.7.6-20.el9_2	3.8.3-4.el9_4	gnutls: potential crash during chain building/verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28835 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-03-21 06:15 修改: 2026-04-15 00:35
gnutls	CVE-2025-14831	中危	3.7.6-20.el9_2	3.8.3-10.el9_7	gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14831 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-02-09 15:16 修改: 2026-05-14 23:16
gnutls	CVE-2025-32988	中危	3.7.6-20.el9_2	3.8.3-6.el9_6.2	gnutls: Vulnerability in GnuTLS otherName SAN export 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32988 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-10 08:15 修改: 2026-05-12 13:16
gnutls	CVE-2025-32989	中危	3.7.6-20.el9_2	3.8.3-6.el9_6.2	gnutls: Vulnerability in GnuTLS SCT extension parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32989 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-10 08:15 修改: 2026-05-12 13:16
gnutls	CVE-2025-32990	中危	3.7.6-20.el9_2	3.8.3-6.el9_6.2	gnutls: Vulnerability in GnuTLS certtool template parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32990 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-10 10:15 修改: 2026-04-20 22:16
openssl	CVE-2023-0464	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-16.0.1.el9_2	openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-03-22 17:15 修改: 2025-05-05 16:15
openssl	CVE-2023-0465	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-16.0.1.el9_2	openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-03-28 15:15 修改: 2025-02-18 21:15
openssl	CVE-2023-0466	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-16.0.1.el9_2	openssl: Certificate policy check not enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0466 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-03-28 15:15 修改: 2025-02-19 18:15
openssl	CVE-2023-1255	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-16.0.1.el9_2	openssl: Input buffer over-read in AES-XTS implementation on 64 bit ARM 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1255 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-04-20 17:15 修改: 2025-02-04 22:15
openssl	CVE-2023-2650	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-16.0.1.el9_2	openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-05-30 14:15 修改: 2025-03-19 16:15
openssl	CVE-2023-6129	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6129 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-01-09 17:15 修改: 2026-05-12 11:16
openssl	CVE-2023-6237	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: Excessive time spent checking invalid RSA public keys 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6237 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-04-25 07:15 修改: 2026-05-12 11:16
openssl	CVE-2024-0727	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: denial of service via null dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-01-26 09:15 修改: 2026-05-12 12:16
openssl	CVE-2024-6119	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-28.0.1.el9_4	openssl: Possible denial of service in X.509 name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-09-03 16:15 修改: 2026-05-12 12:17
openssl	CVE-2025-69419	中危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl	CVE-2025-9230	中危	1:3.0.7-6.0.1.el9_2	1:3.5.1-4.0.1.el9_7	openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
gnutls	CVE-2025-6395	中危	3.7.6-20.el9_2	3.8.3-6.el9_6.2	gnutls: NULL pointer dereference in _gnutls_figure_common_ciphersuite() 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6395 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-10 16:15 修改: 2026-05-12 13:17
gnutls	CVE-2025-9820	中危	3.7.6-20.el9_2	3.8.3-10.el9_7	gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9820 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-26 20:16 修改: 2026-05-12 13:17
iputils	CVE-2025-47268	中危	20210202-8.0.1.el9	20210202-11.0.1.el9_6.1	iputils: Signed Integer Overflow in Timestamp Multiplication in iputils ping 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47268 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-05-05 14:15 修改: 2026-04-06 14:12
iputils	CVE-2025-48964	中危	20210202-8.0.1.el9	20210202-11.0.1.el9_6.3	iputils: iputils integer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-48964 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-22 18:15 修改: 2026-04-15 00:35
curl	CVE-2023-27536	中危	7.76.1-23.el9_2.1	7.76.1-26.el9	curl: GSS delegation too eager connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-03-30 20:15 修改: 2025-02-14 16:15
curl	CVE-2023-27538	中危	7.76.1-23.el9_2.1	7.76.1-26.el9	curl: SSH connection too eager reuse still 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27538 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-03-30 20:15 修改: 2025-06-09 15:15
krb5-libs	CVE-2023-36054	中危	1.20.1-8.0.1.el9	1.21.1-1.0.1.el9	krb5: Denial of service through freeing uninitialized pointer 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36054 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-08-07 19:15 修改: 2024-11-21 08:09
krb5-libs	CVE-2023-39975	中危	1.20.1-8.0.1.el9	1.21.1-1.0.1.el9	krb5: double-free in KDC TGS processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39975 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-08-16 15:15 修改: 2026-02-25 18:17
krb5-libs	CVE-2024-26458	中危	1.20.1-8.0.1.el9	1.21.1-3.0.1.el9	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
krb5-libs	CVE-2024-26461	中危	1.20.1-8.0.1.el9	1.21.1-3.0.1.el9	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
krb5-libs	CVE-2024-26462	中危	1.20.1-8.0.1.el9	1.21.1-3.0.1.el9	krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-02-29 01:44 修改: 2025-03-25 20:15
krb5-libs	CVE-2024-37370	中危	1.20.1-8.0.1.el9	1.21.1-2.0.1.el9_4	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-06-28 22:15 修改: 2026-05-12 12:16
krb5-libs	CVE-2025-24528	中危	1.20.1-8.0.1.el9	1.21.1-6.0.1.el9	krb5: overflow when calculating ulog block size 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24528 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-16 18:16 修改: 2026-04-15 00:35
krb5-libs	CVE-2025-3576	中危	1.20.1-8.0.1.el9	1.21.1-8.0.1.el9_6	krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-04-15 06:15 修改: 2026-05-12 13:17
openssl-devel	CVE-2023-0464	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-16.0.1.el9_2	openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-03-22 17:15 修改: 2025-05-05 16:15
openssl-devel	CVE-2023-0465	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-16.0.1.el9_2	openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-03-28 15:15 修改: 2025-02-18 21:15
openssl-devel	CVE-2023-0466	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-16.0.1.el9_2	openssl: Certificate policy check not enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0466 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-03-28 15:15 修改: 2025-02-19 18:15
openssl-devel	CVE-2023-1255	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-16.0.1.el9_2	openssl: Input buffer over-read in AES-XTS implementation on 64 bit ARM 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1255 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-04-20 17:15 修改: 2025-02-04 22:15
openssl-devel	CVE-2023-2650	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-16.0.1.el9_2	openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-05-30 14:15 修改: 2025-03-19 16:15
openssl-devel	CVE-2023-6129	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6129 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2024-01-09 17:15 修改: 2026-05-12 11:16
openssl-devel	CVE-2023-6237	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: Excessive time spent checking invalid RSA public keys 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6237 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2024-04-25 07:15 修改: 2026-05-12 11:16
openssl-devel	CVE-2024-0727	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: denial of service via null dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2024-01-26 09:15 修改: 2026-05-12 12:16
openssl-devel	CVE-2024-6119	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-28.0.1.el9_4	openssl: Possible denial of service in X.509 name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2024-09-03 16:15 修改: 2026-05-12 12:17
openssl-devel	CVE-2025-69419	中危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl-devel	CVE-2025-9230	中危	1:3.0.7-6.0.1.el9_2	1:3.5.1-4.0.1.el9_7	openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
curl	CVE-2023-28321	中危	7.76.1-23.el9_2.1	7.76.1-23.el9_2.2	curl: IDN wildcard match may lead to Improper Cerificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-05-26 21:15 修改: 2025-01-15 16:15
curl	CVE-2023-28322	中危	7.76.1-23.el9_2.1	7.76.1-23.el9_2.2	curl: more POST-after-PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-05-26 21:15 修改: 2026-02-13 20:16
curl	CVE-2023-38546	中危	7.76.1-23.el9_2.1	7.76.1-26.el9_3.2	curl: cookie injection with none file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-10-18 04:15 修改: 2026-05-12 11:16
curl	CVE-2023-46218	中危	7.76.1-23.el9_2.1	7.76.1-26.el9_3.3	curl: information disclosure by exploiting a mixed case flaw 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-12-07 01:15 修改: 2026-05-12 11:16
libarchive	CVE-2025-25724	中危	3.5.3-4.el9	3.5.3-5.el9_6	libarchive: Buffer Overflow vulnerability in libarchive 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-25724 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-03-02 02:15 修改: 2025-07-17 15:56
libblkid	CVE-2025-14104	中危	2.37.4-11.el9_2	2.37.4-21.0.1.el9_7	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
curl	CVE-2024-2398	中危	7.76.1-23.el9_2.1	7.76.1-29.el9_4.1	curl: HTTP/2 push headers memory-leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-03-27 08:15 修改: 2025-07-30 19:42
glibc	CVE-2025-0395	中危	2.34-60.0.1.el9	2.34-125.0.1.el9_5.8	glibc: buffer overflow in the GNU C Library's assert() 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0395 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-01-22 13:15 修改: 2026-05-12 13:16
libcap	CVE-2023-2602	中危	2.48-8.el9	2.48-9.el9_2	libcap: Memory Leak on pthread_create() Error 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2602 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-06-06 20:15 修改: 2024-11-21 07:58
libcap	CVE-2023-2603	中危	2.48-8.el9	2.48-9.el9_2	libcap: Integer Overflow in _libcap_strdup() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2603 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-06-06 20:15 修改: 2025-12-02 21:15
glibc	CVE-2025-15281	中危	2.34-60.0.1.el9	2.34-231.0.1.el9_7.10	glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-20 14:16 修改: 2026-02-05 17:43
libcurl	CVE-2023-27533	中危	7.76.1-23.el9_2.1	7.76.1-26.el9	curl: TELNET option IAC injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27533 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-03-30 20:15 修改: 2026-02-13 21:16
libcurl	CVE-2023-27534	中危	7.76.1-23.el9_2.1	7.76.1-26.el9	curl: SFTP path ~ resolving discrepancy 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-03-30 20:15 修改: 2025-04-23 17:16
libcurl	CVE-2023-27536	中危	7.76.1-23.el9_2.1	7.76.1-26.el9	curl: GSS delegation too eager connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-03-30 20:15 修改: 2025-02-14 16:15
openssl-libs	CVE-2023-0464	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-16.0.1.el9_2	openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-03-22 17:15 修改: 2025-05-05 16:15
openssl-libs	CVE-2023-0465	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-16.0.1.el9_2	openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-03-28 15:15 修改: 2025-02-18 21:15
openssl-libs	CVE-2023-0466	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-16.0.1.el9_2	openssl: Certificate policy check not enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0466 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-03-28 15:15 修改: 2025-02-19 18:15
openssl-libs	CVE-2023-1255	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-16.0.1.el9_2	openssl: Input buffer over-read in AES-XTS implementation on 64 bit ARM 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1255 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-04-20 17:15 修改: 2025-02-04 22:15
openssl-libs	CVE-2023-2650	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-16.0.1.el9_2	openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-05-30 14:15 修改: 2025-03-19 16:15
openssl-libs	CVE-2023-6129	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6129 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-01-09 17:15 修改: 2026-05-12 11:16
openssl-libs	CVE-2023-6237	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: Excessive time spent checking invalid RSA public keys 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6237 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-04-25 07:15 修改: 2026-05-12 11:16
openssl-libs	CVE-2024-0727	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: denial of service via null dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-01-26 09:15 修改: 2026-05-12 12:16
openssl-libs	CVE-2024-6119	中危	1:3.0.7-6.0.1.el9_2	1:3.0.7-28.0.1.el9_4	openssl: Possible denial of service in X.509 name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-09-03 16:15 修改: 2026-05-12 12:17
openssl-libs	CVE-2025-69419	中危	1:3.0.7-6.0.1.el9_2	1:3.5.1-7.0.1.el9_7	openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl-libs	CVE-2025-9230	中危	1:3.0.7-6.0.1.el9_2	1:3.5.1-4.0.1.el9_7	openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
libcurl	CVE-2023-27538	中危	7.76.1-23.el9_2.1	7.76.1-26.el9	curl: SSH connection too eager reuse still 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27538 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-03-30 20:15 修改: 2025-06-09 15:15
libcurl	CVE-2023-28321	中危	7.76.1-23.el9_2.1	7.76.1-23.el9_2.2	curl: IDN wildcard match may lead to Improper Cerificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-05-26 21:15 修改: 2025-01-15 16:15
libcurl	CVE-2023-28322	中危	7.76.1-23.el9_2.1	7.76.1-23.el9_2.2	curl: more POST-after-PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-05-26 21:15 修改: 2026-02-13 20:16
pam	CVE-2024-10041	中危	1.5.1-14.el9	1.5.1-21.0.1.el9_5	pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
pam	CVE-2024-22365	中危	1.5.1-14.el9	1.5.1-19.0.1.el9	pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-02-06 08:15 修改: 2026-05-12 12:16
perl-B	CVE-2023-47038	中危	1.80-480.el9	1.80-481.el9	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-12-18 14:15 修改: 2025-11-04 19:16
perl-B	CVE-2025-40909	中危	1.80-480.el9	1.80-481.1.el9_6	perl: Perl threads have a working directory race condition where file operations may target unintended paths 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2025-05-30 13:15 修改: 2026-04-18 15:16
perl-Errno	CVE-2023-47038	中危	1.30-480.el9	1.30-481.el9	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-12-18 14:15 修改: 2025-11-04 19:16
perl-Errno	CVE-2025-40909	中危	1.30-480.el9	1.30-481.1.el9_6	perl: Perl threads have a working directory race condition where file operations may target unintended paths 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2025-05-30 13:15 修改: 2026-04-18 15:16
perl-Fcntl	CVE-2023-47038	中危	1.13-480.el9	1.13-481.el9	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-12-18 14:15 修改: 2025-11-04 19:16
perl-Fcntl	CVE-2025-40909	中危	1.13-480.el9	1.13-481.1.el9_6	perl: Perl threads have a working directory race condition where file operations may target unintended paths 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2025-05-30 13:15 修改: 2026-04-18 15:16
perl-IO	CVE-2023-47038	中危	1.43-480.el9	1.43-481.el9	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-12-18 14:15 修改: 2025-11-04 19:16
perl-IO	CVE-2025-40909	中危	1.43-480.el9	1.43-481.1.el9_6	perl: Perl threads have a working directory race condition where file operations may target unintended paths 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2025-05-30 13:15 修改: 2026-04-18 15:16
perl-NDBM_File	CVE-2023-47038	中危	1.15-480.el9	1.15-481.el9	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-12-18 14:15 修改: 2025-11-04 19:16
perl-NDBM_File	CVE-2025-40909	中危	1.15-480.el9	1.15-481.1.el9_6	perl: Perl threads have a working directory race condition where file operations may target unintended paths 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2025-05-30 13:15 修改: 2026-04-18 15:16
perl-POSIX	CVE-2023-47038	中危	1.94-480.el9	1.94-481.el9	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-12-18 14:15 修改: 2025-11-04 19:16
perl-POSIX	CVE-2025-40909	中危	1.94-480.el9	1.94-481.1.el9_6	perl: Perl threads have a working directory race condition where file operations may target unintended paths 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2025-05-30 13:15 修改: 2026-04-18 15:16
perl-interpreter	CVE-2023-47038	中危	4:5.32.1-480.el9	4:5.32.1-481.el9	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-12-18 14:15 修改: 2025-11-04 19:16
perl-interpreter	CVE-2025-40909	中危	4:5.32.1-480.el9	4:5.32.1-481.1.el9_6	perl: Perl threads have a working directory race condition where file operations may target unintended paths 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2025-05-30 13:15 修改: 2026-04-18 15:16
perl-libs	CVE-2023-47038	中危	4:5.32.1-480.el9	4:5.32.1-481.el9	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-12-18 14:15 修改: 2025-11-04 19:16
perl-libs	CVE-2025-40909	中危	4:5.32.1-480.el9	4:5.32.1-481.1.el9_6	perl: Perl threads have a working directory race condition where file operations may target unintended paths 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2025-05-30 13:15 修改: 2026-04-18 15:16
perl-mro	CVE-2023-47038	中危	1.23-480.el9	1.23-481.el9	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-12-18 14:15 修改: 2025-11-04 19:16
perl-mro	CVE-2025-40909	中危	1.23-480.el9	1.23-481.1.el9_6	perl: Perl threads have a working directory race condition where file operations may target unintended paths 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2025-05-30 13:15 修改: 2026-04-18 15:16
libcurl	CVE-2023-38546	中危	7.76.1-23.el9_2.1	7.76.1-26.el9_3.2	curl: cookie injection with none file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-10-18 04:15 修改: 2026-05-12 11:16
libcurl	CVE-2023-46218	中危	7.76.1-23.el9_2.1	7.76.1-26.el9_3.3	curl: information disclosure by exploiting a mixed case flaw 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-12-07 01:15 修改: 2026-05-12 11:16
libcurl	CVE-2024-2398	中危	7.76.1-23.el9_2.1	7.76.1-29.el9_4.1	curl: HTTP/2 push headers memory-leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-03-27 08:15 修改: 2025-07-30 19:42
libcurl	CVE-2025-9086	中危	7.76.1-23.el9_2.1	7.76.1-35.el9_7.3	curl: libcurl: Curl out of bounds read for cookie path 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9086 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-09-12 06:15 修改: 2026-06-02 14:16
libeconf	CVE-2023-22652	中危	0.4.1-2.el9	0.4.1-3.el9_2	libeconf: stack-based buffer overflow in read_file() in lib/getfilecontents.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22652 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-06-01 12:15 修改: 2025-05-13 01:15
libfastjson	CVE-2020-12762	中危	0.99.9-3.el9	0.99.9-5.el9	libfastjson: integer overflow and out-of-bounds write via a large JSON file 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12762 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2020-05-09 18:15 修改: 2025-11-03 20:15
libfdisk	CVE-2025-14104	中危	2.37.4-11.el9_2	2.37.4-21.0.1.el9_7	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
glibc	CVE-2025-4802	中危	2.34-60.0.1.el9	2.34-168.0.1.el9_6.19	glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4802 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-05-16 20:15 修改: 2025-11-03 20:19
libgcc	CVE-2020-11023	中危	11.3.1-4.3.0.1.el9	11.5.0-5.0.1.el9_5	jquery: Untrusted code execution via <option> tag in HTML passed to DOM manipulation methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11023 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2020-04-29 21:15 修改: 2025-11-07 19:32
libgcrypt	CVE-2024-2236	中危	1.10.0-10.el9_2	1.10.0-11.el9	libgcrypt: vulnerable to Marvin Attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-03-06 22:15 修改: 2026-04-15 00:35
glibc	CVE-2025-5702	中危	2.34-60.0.1.el9	2.34-168.0.1.el9_6.20	glibc: Vector register overwrite bug in glibc 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5702 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-05 19:15 修改: 2025-10-01 15:37
libgomp	CVE-2020-11023	中危	11.3.1-4.3.0.1.el9	11.5.0-5.0.1.el9_5	jquery: Untrusted code execution via <option> tag in HTML passed to DOM manipulation methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11023 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2020-04-29 21:15 修改: 2025-11-07 19:32
libicu	CVE-2025-5222	中危	67.1-9.el9	67.1-10.el9_6	icu: Stack buffer overflow in the SRBRoot::addTag function 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5222 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2025-05-27 21:15 修改: 2026-04-23 00:16
libmount	CVE-2025-14104	中危	2.37.4-11.el9_2	2.37.4-21.0.1.el9_7	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
glibc	CVE-2025-8058	中危	2.34-60.0.1.el9	2.34-168.0.1.el9_6.23	glibc: Double free in glibc 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8058 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-23 20:15 修改: 2026-04-15 00:35
python3	CVE-2007-4559	中危	3.9.16-1.el9_2.1	3.9.18-1.el9_3	python: tarfile module directory traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-4559 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2007-08-28 01:17 修改: 2026-04-23 00:35
python3	CVE-2023-27043	中危	3.9.16-1.el9_2.1	3.9.18-1.el9_3.1	python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-04-19 00:15 修改: 2026-05-12 11:16
python3	CVE-2024-0450	中危	3.9.16-1.el9_2.1	3.9.18-3.el9_4.1	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-03-19 16:15 修改: 2026-04-15 00:35
python3	CVE-2024-4032	中危	3.9.16-1.el9_2.1	3.9.18-3.el9_4.3	python: incorrect IPv4 and IPv6 private ranges 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-06-17 15:15 修改: 2026-04-15 00:35
python3	CVE-2024-6232	中危	3.9.16-1.el9_2.1	3.9.19-8.el9_5.1	python: cpython: tarfile: ReDos via excessive backtracking while parsing header values 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-09-03 13:15 修改: 2025-11-03 23:17
python3	CVE-2024-6923	中危	3.9.16-1.el9_2.1	3.9.18-3.el9_4.5	cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-08-01 14:15 修改: 2026-04-15 00:35
python3	CVE-2024-8088	中危	3.9.16-1.el9_2.1	3.9.19-8.el9	python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-08-22 19:15 修改: 2026-04-15 00:35
python3	CVE-2025-0938	中危	3.9.16-1.el9_2.1	3.9.21-2.el9	python: cpython: URL parser allowed square brackets in domain names 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0938 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-01-31 18:15 修改: 2026-04-15 00:35
python3	CVE-2025-12084	中危	3.9.16-1.el9_2.1	3.9.25-3.0.1.el9_7	cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12084 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-12-03 19:15 修改: 2026-01-26 15:16
python3	CVE-2025-15366	中危	3.9.16-1.el9_2.1	3.9.25-3.0.1.el9_7.1	cpython: IMAP command injection in user-controlled commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3	CVE-2025-15367	中危	3.9.16-1.el9_2.1	3.9.25-3.0.1.el9_7.1	cpython: POP3 command injection in user-controlled commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3	CVE-2025-8194	中危	3.9.16-1.el9_2.1	3.9.21-2.el9_6.2	cpython: Cpython infinite loop when parsing a tarfile 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8194 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-28 19:15 修改: 2026-04-15 00:35
python3	CVE-2025-8291	中危	3.9.16-1.el9_2.1	3.9.25-2.0.1.el9_7	cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8291 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-10-07 18:16 修改: 2026-04-15 00:35
python3	CVE-2026-1299	中危	3.9.16-1.el9_2.1	3.9.25-3.0.1.el9_7.1	cpython: email header injection due to unquoted newlines 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-23 17:16 修改: 2026-04-15 00:35
glibc	CVE-2026-0861	中危	2.34-60.0.1.el9	2.34-231.0.1.el9_7.10	glibc: Integer overflow in memalign leads to heap corruption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-14 21:15 修改: 2026-02-03 18:26
libnghttp2	CVE-2024-28182	中危	1.43.0-5.el9	1.43.0-5.el9_4.3	nghttp2: CONTINUATION frames DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28182 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-04-04 15:15 修改: 2025-11-04 19:17
libsmartcols	CVE-2025-14104	中危	2.37.4-11.el9_2	2.37.4-21.0.1.el9_7	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
libssh	CVE-2023-1667	中危	0.10.4-8.el9	0.10.4-11.el9	libssh: NULL pointer dereference during rekeying with algorithm guessing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1667 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-05-26 18:15 修改: 2024-11-21 07:39
libssh	CVE-2023-2283	中危	0.10.4-8.el9	0.10.4-11.el9	libssh: authorization bypass in pki_verify_data_signature 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2283 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-05-26 18:15 修改: 2025-11-03 21:15
libssh	CVE-2025-5318	中危	0.10.4-8.el9	0.10.4-15.el9_7	libssh: out-of-bounds read in sftp_handle() 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5318 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-06-24 14:15 修改: 2026-02-27 17:16
libssh	CVE-2025-5987	中危	0.10.4-8.el9	0.10.4-17.el9_7	libssh: Invalid return code for chacha20 poly1305 with OpenSSL backend 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5987 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-07 15:15 修改: 2026-03-20 21:17
glibc	CVE-2026-0915	中危	2.34-60.0.1.el9	2.34-231.0.1.el9_7.10	glibc: glibc: Information disclosure via zero-valued network query 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-15 22:16 修改: 2026-01-23 19:36
libstdc++	CVE-2020-11023	中危	11.3.1-4.3.0.1.el9	11.5.0-5.0.1.el9_5	jquery: Untrusted code execution via <option> tag in HTML passed to DOM manipulation methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11023 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2020-04-29 21:15 修改: 2025-11-07 19:32
libtasn1	CVE-2024-12133	中危	4.16.0-8.el9_1	4.16.0-9.el9	libtasn1: Inefficient DER Decoding in libtasn1 Leading to Potential Remote DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12133 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-02-10 16:15 修改: 2026-05-12 12:16
libuuid	CVE-2025-14104	中危	2.37.4-11.el9_2	2.37.4-21.0.1.el9_7	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
curl	CVE-2025-9086	中危	7.76.1-23.el9_2.1	7.76.1-35.el9_7.3	curl: libcurl: Curl out of bounds read for cookie path 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9086 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-09-12 06:15 修改: 2026-06-02 14:16
dbus	CVE-2023-34969	中危	1:1.12.20-7.0.1.el9_1	1:1.12.20-7.0.1.el9_2.1	dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-06-08 03:15 修改: 2025-06-09 15:15
dbus-libs	CVE-2023-34969	中危	1:1.12.20-7.0.1.el9_1	1:1.12.20-7.0.1.el9_2.1	dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-06-08 03:15 修改: 2025-06-09 15:15
bzip2-libs	CVE-2019-12900	中危	1.0.8-8.el9	1.0.8-10.el9_5	bzip2: bzip2: Data integrity error when decompressing (with data integrity tests fail). 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12900 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2019-06-19 23:15 修改: 2025-06-09 16:15
python3-libs	CVE-2007-4559	中危	3.9.16-1.el9_2.1	3.9.18-1.el9_3	python: tarfile module directory traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-4559 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2007-08-28 01:17 修改: 2026-04-23 00:35
python3-libs	CVE-2023-27043	中危	3.9.16-1.el9_2.1	3.9.18-1.el9_3.1	python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-04-19 00:15 修改: 2026-05-12 11:16
python3-libs	CVE-2024-0450	中危	3.9.16-1.el9_2.1	3.9.18-3.el9_4.1	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-03-19 16:15 修改: 2026-04-15 00:35
python3-libs	CVE-2024-4032	中危	3.9.16-1.el9_2.1	3.9.18-3.el9_4.3	python: incorrect IPv4 and IPv6 private ranges 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-06-17 15:15 修改: 2026-04-15 00:35
python3-libs	CVE-2024-6232	中危	3.9.16-1.el9_2.1	3.9.19-8.el9_5.1	python: cpython: tarfile: ReDos via excessive backtracking while parsing header values 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-09-03 13:15 修改: 2025-11-03 23:17
python3-libs	CVE-2024-6923	中危	3.9.16-1.el9_2.1	3.9.18-3.el9_4.5	cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-08-01 14:15 修改: 2026-04-15 00:35
python3-libs	CVE-2024-8088	中危	3.9.16-1.el9_2.1	3.9.19-8.el9	python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-08-22 19:15 修改: 2026-04-15 00:35
python3-libs	CVE-2025-0938	中危	3.9.16-1.el9_2.1	3.9.21-2.el9	python: cpython: URL parser allowed square brackets in domain names 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0938 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-01-31 18:15 修改: 2026-04-15 00:35
python3-libs	CVE-2025-12084	中危	3.9.16-1.el9_2.1	3.9.25-3.0.1.el9_7	cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12084 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-12-03 19:15 修改: 2026-01-26 15:16
python3-libs	CVE-2025-15366	中危	3.9.16-1.el9_2.1	3.9.25-3.0.1.el9_7.1	cpython: IMAP command injection in user-controlled commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3-libs	CVE-2025-15367	中危	3.9.16-1.el9_2.1	3.9.25-3.0.1.el9_7.1	cpython: POP3 command injection in user-controlled commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3-libs	CVE-2025-8194	中危	3.9.16-1.el9_2.1	3.9.21-2.el9_6.2	cpython: Cpython infinite loop when parsing a tarfile 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8194 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-28 19:15 修改: 2026-04-15 00:35
python3-libs	CVE-2025-8291	中危	3.9.16-1.el9_2.1	3.9.25-2.0.1.el9_7	cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8291 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-10-07 18:16 修改: 2026-04-15 00:35
python3-libs	CVE-2026-1299	中危	3.9.16-1.el9_2.1	3.9.25-3.0.1.el9_7.1	cpython: email header injection due to unquoted newlines 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-01-23 17:16 修改: 2026-04-15 00:35
python3-rpm	CVE-2021-35937	中危	4.16.1.3-22.0.1.el9	4.16.1.3-27.el9_3	rpm: TOCTOU race in checks for unsafe symlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-08-25 20:15 修改: 2024-11-21 06:12
python3-rpm	CVE-2021-35938	中危	4.16.1.3-22.0.1.el9	4.16.1.3-27.el9_3	rpm: races with chown/chmod/capabilities calls during installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-08-25 20:15 修改: 2024-11-21 06:12
python3-rpm	CVE-2021-35939	中危	4.16.1.3-22.0.1.el9	4.16.1.3-27.el9_3	rpm: checks for unsafe symlinks are not performed for intermediary directories 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-08-26 16:15 修改: 2024-11-21 06:12
rpm	CVE-2021-35937	中危	4.16.1.3-22.0.1.el9	4.16.1.3-27.el9_3	rpm: TOCTOU race in checks for unsafe symlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-08-25 20:15 修改: 2024-11-21 06:12
rpm	CVE-2021-35938	中危	4.16.1.3-22.0.1.el9	4.16.1.3-27.el9_3	rpm: races with chown/chmod/capabilities calls during installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-08-25 20:15 修改: 2024-11-21 06:12
rpm	CVE-2021-35939	中危	4.16.1.3-22.0.1.el9	4.16.1.3-27.el9_3	rpm: checks for unsafe symlinks are not performed for intermediary directories 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-08-26 16:15 修改: 2024-11-21 06:12
rpm-build-libs	CVE-2021-35937	中危	4.16.1.3-22.0.1.el9	4.16.1.3-27.el9_3	rpm: TOCTOU race in checks for unsafe symlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-08-25 20:15 修改: 2024-11-21 06:12
rpm-build-libs	CVE-2021-35938	中危	4.16.1.3-22.0.1.el9	4.16.1.3-27.el9_3	rpm: races with chown/chmod/capabilities calls during installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-08-25 20:15 修改: 2024-11-21 06:12
rpm-build-libs	CVE-2021-35939	中危	4.16.1.3-22.0.1.el9	4.16.1.3-27.el9_3	rpm: checks for unsafe symlinks are not performed for intermediary directories 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-08-26 16:15 修改: 2024-11-21 06:12
rpm-libs	CVE-2021-35937	中危	4.16.1.3-22.0.1.el9	4.16.1.3-27.el9_3	rpm: TOCTOU race in checks for unsafe symlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-08-25 20:15 修改: 2024-11-21 06:12
rpm-libs	CVE-2021-35938	中危	4.16.1.3-22.0.1.el9	4.16.1.3-27.el9_3	rpm: races with chown/chmod/capabilities calls during installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-08-25 20:15 修改: 2024-11-21 06:12
rpm-libs	CVE-2021-35939	中危	4.16.1.3-22.0.1.el9	4.16.1.3-27.el9_3	rpm: checks for unsafe symlinks are not performed for intermediary directories 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-08-26 16:15 修改: 2024-11-21 06:12
rpm-sign-libs	CVE-2021-35937	中危	4.16.1.3-22.0.1.el9	4.16.1.3-27.el9_3	rpm: TOCTOU race in checks for unsafe symlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-08-25 20:15 修改: 2024-11-21 06:12
rpm-sign-libs	CVE-2021-35938	中危	4.16.1.3-22.0.1.el9	4.16.1.3-27.el9_3	rpm: races with chown/chmod/capabilities calls during installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-08-25 20:15 修改: 2024-11-21 06:12
rpm-sign-libs	CVE-2021-35939	中危	4.16.1.3-22.0.1.el9	4.16.1.3-27.el9_3	rpm: checks for unsafe symlinks are not performed for intermediary directories 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-08-26 16:15 修改: 2024-11-21 06:12
expat	CVE-2023-52425	中危	2.5.0-1.el9	2.5.0-1.el9_3.1	expat: parsing large tokens can trigger a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52425 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-02-04 20:15 修改: 2025-11-04 19:16
sqlite-libs	CVE-2023-7104	中危	3.34.1-6.el9_1	3.34.1-7.el9_3	sqlite: heap-buffer-overflow at sessionfuzz 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7104 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-12-29 10:15 修改: 2025-11-03 22:16
systemd	CVE-2023-7008	中危	252-13.0.1.el9_2	252-32.0.2.el9_4	systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-12-23 13:15 修改: 2025-11-04 17:15
systemd	CVE-2025-4598	中危	252-13.0.1.el9_2	252-55.0.3.el9_7.7	systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4598 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-05-30 14:15 修改: 2026-05-19 16:16
systemd	CVE-2026-29111	中危	252-13.0.1.el9_2	252-55.0.3.el9_7.9	systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
systemd-libs	CVE-2023-7008	中危	252-13.0.1.el9_2	252-32.0.2.el9_4	systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-12-23 13:15 修改: 2025-11-04 17:15
systemd-libs	CVE-2025-4598	中危	252-13.0.1.el9_2	252-55.0.3.el9_7.7	systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4598 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-05-30 14:15 修改: 2026-05-19 16:16
systemd-libs	CVE-2026-29111	中危	252-13.0.1.el9_2	252-55.0.3.el9_7.9	systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
systemd-pam	CVE-2023-7008	中危	252-13.0.1.el9_2	252-32.0.2.el9_4	systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-12-23 13:15 修改: 2025-11-04 17:15
systemd-pam	CVE-2025-4598	中危	252-13.0.1.el9_2	252-55.0.3.el9_7.7	systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4598 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-05-30 14:15 修改: 2026-05-19 16:16
systemd-pam	CVE-2026-29111	中危	252-13.0.1.el9_2	252-55.0.3.el9_7.9	systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
tar	CVE-2025-45582	中危	2:1.34-6.el9_1	2:1.34-9.el9_7	tar: Tar path traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-45582 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-11 17:15 修改: 2025-11-02 01:15
util-linux	CVE-2025-14104	中危	2.37.4-11.el9_2	2.37.4-21.0.1.el9_7	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
util-linux-core	CVE-2025-14104	中危	2.37.4-11.el9_2	2.37.4-21.0.1.el9_7	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
expat	CVE-2024-28757	中危	2.5.0-1.el9	2.5.0-1.el9_3.1	expat: XML Entity Expansion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28757 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-03-10 05:15 修改: 2025-11-04 22:15
libxml2	CVE-2022-49043	中危	2.9.13-3.el9_1	2.9.13-6.el9_5.1	libxml: use-after-free in xmlXIncludeAddNode 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-49043 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-01-26 06:15 修改: 2025-11-03 21:15
libxml2	CVE-2023-28484	中危	2.9.13-3.el9_1	2.9.13-3.el9_2.1	libxml2: NULL dereference in xmlSchemaFixupComplexType 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28484 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-04-24 21:15 修改: 2025-05-30 20:15
libxml2	CVE-2023-29469	中危	2.9.13-3.el9_1	2.9.13-3.el9_2.1	libxml2: Hashing of empty dict strings isn't deterministic 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29469 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-04-24 21:15 修改: 2025-02-04 21:15
libxml2	CVE-2023-39615	中危	2.9.13-3.el9_1	2.9.13-5.el9_3	libxml2: crafted xml can cause global buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39615 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-08-29 17:15 修改: 2025-11-03 21:15
vim-minimal	CVE-2025-53905	中危	2:8.2.2637-20.0.1.el9_1	2:8.2.2637-23.0.1.el9_7	vim: Vim path traversial 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53905 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-15 21:15 修改: 2025-11-04 22:16
vim-minimal	CVE-2025-53906	中危	2:8.2.2637-20.0.1.el9_1	2:8.2.2637-23.0.1.el9_7	vim: Vim path traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53906 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2025-07-15 21:15 修改: 2026-04-01 19:16
openssl-devel	CVE-2023-3446	低危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-07-19 12:15 修改: 2025-04-23 17:16
openssl-devel	CVE-2023-3817	低危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-07-31 16:15 修改: 2025-05-05 16:15
openssl-devel	CVE-2023-5678	低危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-11-06 16:15 修改: 2026-05-12 11:16
openssl-devel	CVE-2024-2511	低危	1:3.0.7-6.0.1.el9_2	1:3.2.2-6.0.1.el9_5	openssl: Unbounded memory growth with session handling in TLSv1.3 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2024-04-08 14:15 修改: 2026-05-12 12:16
procps-ng	CVE-2023-4016	低危	3.3.17-11.el9	3.3.17-13.0.1.el9	procps: ps buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-08-02 05:15 修改: 2024-11-21 08:34
openssl-devel	CVE-2024-4603	低危	1:3.0.7-6.0.1.el9_2	1:3.2.2-6.0.1.el9_5	openssl: Excessive time spent checking DSA keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4603 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2024-05-16 16:15 修改: 2026-04-15 00:35
openssl-devel	CVE-2024-4741	低危	1:3.0.7-6.0.1.el9_2	1:3.2.2-6.0.1.el9_5	openssl: Use After Free with SSL_free_buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2024-11-13 11:15 修改: 2026-04-15 00:35
openssl-libs	CVE-2023-2975	低危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2975 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-07-14 12:15 修改: 2025-04-23 17:16
openssl-libs	CVE-2023-3446	低危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-07-19 12:15 修改: 2025-04-23 17:16
openssl-libs	CVE-2023-3817	低危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-07-31 16:15 修改: 2025-05-05 16:15
openssl-libs	CVE-2023-5678	低危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-11-06 16:15 修改: 2026-05-12 11:16
openssl-libs	CVE-2024-2511	低危	1:3.0.7-6.0.1.el9_2	1:3.2.2-6.0.1.el9_5	openssl: Unbounded memory growth with session handling in TLSv1.3 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-04-08 14:15 修改: 2026-05-12 12:16
shadow-utils	CVE-2023-4641	低危	2:4.9-6.el9	2:4.9-8.el9	shadow-utils: possible password leak during passwd(1) change 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-12-27 16:15 修改: 2025-11-03 20:16
shadow-utils	CVE-2024-56433	低危	2:4.9-6.el9	2:4.9-15.el9	shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
openssl-libs	CVE-2024-4603	低危	1:3.0.7-6.0.1.el9_2	1:3.2.2-6.0.1.el9_5	openssl: Excessive time spent checking DSA keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4603 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-05-16 16:15 修改: 2026-04-15 00:35
openssl-libs	CVE-2024-4741	低危	1:3.0.7-6.0.1.el9_2	1:3.2.2-6.0.1.el9_5	openssl: Use After Free with SSL_free_buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-11-13 11:15 修改: 2026-04-15 00:35
ncurses	CVE-2022-29458	低危	6.2-8.20210508.el9	6.2-10.20210508.el9_6.2	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2022-04-18 21:15 修改: 2025-06-09 15:15
libstdc++	CVE-2023-4039	低危	11.3.1-4.3.0.1.el9	11.3.1-4.3.0.4.el9	gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-13 09:15 修改: 2025-02-13 17:17
ncurses-libs	CVE-2022-29458	低危	6.2-8.20210508.el9	6.2-10.20210508.el9_6.2	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2022-04-18 21:15 修改: 2025-06-09 15:15
glib2	CVE-2023-32665	低危	2.68.4-6.el9	2.68.4-11.el9	glib: GVariant deserialisation does not match spec for non-normal data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32665 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-14 20:15 修改: 2024-11-21 08:03
openssl	CVE-2023-2975	低危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2975 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-07-14 12:15 修改: 2025-04-23 17:16
openssl	CVE-2023-3446	低危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-07-19 12:15 修改: 2025-04-23 17:16
openssl	CVE-2023-3817	低危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-07-31 16:15 修改: 2025-05-05 16:15
openssl	CVE-2023-5678	低危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-11-06 16:15 修改: 2026-05-12 11:16
openssl	CVE-2024-2511	低危	1:3.0.7-6.0.1.el9_2	1:3.2.2-6.0.1.el9_5	openssl: Unbounded memory growth with session handling in TLSv1.3 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-04-08 14:15 修改: 2026-05-12 12:16
openssl	CVE-2024-4603	低危	1:3.0.7-6.0.1.el9_2	1:3.2.2-6.0.1.el9_5	openssl: Excessive time spent checking DSA keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4603 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-05-16 16:15 修改: 2026-04-15 00:35
tpm2-tss	CVE-2023-22745	低危	3.0.3-8.el9	3.2.2-2.el9	tpm2-tss: Buffer Overlow in TSS2_RC_Decode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22745 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-01-19 23:15 修改: 2025-11-21 20:15
openssl	CVE-2024-4741	低危	1:3.0.7-6.0.1.el9_2	1:3.2.2-6.0.1.el9_5	openssl: Use After Free with SSL_free_buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-11-13 11:15 修改: 2026-04-15 00:35
libgcc	CVE-2023-4039	低危	11.3.1-4.3.0.1.el9	11.3.1-4.3.0.4.el9	gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-13 09:15 修改: 2025-02-13 17:17
file-libs	CVE-2022-48554	低危	5.39-12.el9	5.39-16.el9	file: stack-based buffer over-read in file_copystr in funcs.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48554 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-08-22 19:16 修改: 2024-11-21 07:33
glib2	CVE-2023-29499	低危	2.68.4-6.el9	2.68.4-11.el9	glib: GVariant offset table entry size is not checked in is_normal() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29499 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-14 20:15 修改: 2024-11-21 07:57
libssh	CVE-2023-6004	低危	0.10.4-8.el9	0.10.4-13.el9	libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6004 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2024-01-03 17:15 修改: 2025-11-04 19:16
libssh	CVE-2023-6918	低危	0.10.4-8.el9	0.10.4-13.el9	libssh: Missing checks for return values for digests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6918 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-12-19 00:15 修改: 2025-02-15 01:15
glib2	CVE-2023-32611	低危	2.68.4-6.el9	2.68.4-11.el9	glib: g_variant_byteswap() can take a long time with some non-normal inputs 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32611 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-14 20:15 修改: 2024-11-21 08:03
libgomp	CVE-2023-4039	低危	11.3.1-4.3.0.1.el9	11.3.1-4.3.0.4.el9	gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-13 09:15 修改: 2025-02-13 17:17
openssl-devel	CVE-2023-2975	低危	1:3.0.7-6.0.1.el9_2	1:3.0.7-27.0.3.el9	openssl: AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2975 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-07-14 12:15 修改: 2025-04-23 17:16
vim-minimal	CVE-2021-3903	低危	2:8.2.2637-20.0.1.el9_1	2:8.2.2637-21.0.1.el9	vim: heap-based buffer overflow vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3903 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2021-10-27 21:15 修改: 2024-11-21 06:22
vim-minimal	CVE-2023-4752	低危	2:8.2.2637-20.0.1.el9_1	2:8.2.2637-22.0.1.el9_6	vim: use-after-free in function ins_compl_get_exp in vim/vim 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4752 镜像层: sha256:93ce61a445359d49ccdd916a58f9d323ee2b37da271088845c5ac9e3373185dd 发布日期: 2023-09-04 14:15 修改: 2025-11-03 21:16

Python (python-pkg)

低危漏洞:2

中危漏洞:7

高危漏洞:4

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
certifi	CVE-2023-37920	高危	2022.12.7	2023.7.22	python-certifi: Removal of e-Tugra root certificate 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37920 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-07-25 21:15 修改: 2025-02-13 13:50
setuptools	CVE-2024-6345	高危	67.6.0	70.0.0	pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6345 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2024-07-15 01:15 修改: 2026-04-15 00:35
setuptools	CVE-2025-47273	高危	67.6.0	78.1.1	setuptools: Path Traversal Vulnerability in setuptools PackageIndex 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47273 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2025-05-17 16:15 修改: 2025-06-12 16:29
virtualenv	CVE-2024-53899	高危	20.20.0	20.26.6	virtualenv: potential command injection via virtual environment activation scripts 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-53899 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2024-11-24 16:15 修改: 2025-02-10 18:12
pip	CVE-2025-8869	中危	23.0.1	25.3	pip: pip missing checks on symbolic link extraction 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8869 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2025-09-24 15:15 修改: 2026-04-15 00:35
pip	CVE-2026-3219	中危	23.0.1	26.1	pip: pip: Incorrect file installation due to improper archive handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3219 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-04-20 16:16 修改: 2026-04-20 21:16
pip	CVE-2026-6357	中危	23.0.1	26.1	pip: pip: Arbitrary code execution or information disclosure via malicious wheel package installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6357 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-04-27 15:16 修改: 2026-04-27 23:16
filelock	CVE-2025-68146	中危	3.9.0	3.20.1	filelock: filelock: Time-of-Check-Time-of-Use (TOCTOU) race condition and symlink attack allows arbitrary file corruption or truncation 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68146 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2025-12-16 19:15 修改: 2026-03-05 20:04
filelock	CVE-2026-22701	中危	3.9.0	3.20.3	filelock: filelock Time-of-Check-Time-of-Use (TOCTOU) in SoftFileLock 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22701 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-01-10 06:15 修改: 2026-03-05 13:50
pip	CVE-2023-5752	中危	23.0.1	23.3	pip: Mercurial configuration injectable in repo revision when installing via pip 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5752 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2023-10-25 18:17 修改: 2025-11-03 18:15
virtualenv	CVE-2026-22702	中危	20.20.0	20.36.1	virtualenv: virtualenv: Local attacker can redirect file operations via TOCTOU race condition 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22702 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-01-10 07:16 修改: 2026-02-18 17:43
certifi	CVE-2024-39689	低危	2022.12.7	2024.7.4	python-certifi: Remove root certificates from `GLOBALTRUST` from the root store 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-39689 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2024-07-05 19:15 修改: 2025-02-15 00:15
pip	CVE-2026-1703	低危	23.0.1	26.0	pip: pip: Information disclosure via path traversal when installing crafted wheel archives 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1703 镜像层: sha256:2a82f86623d6dbdfbbc3802418d63276453218fb7baf5c322a8109d26aa35f53 发布日期: 2026-02-02 15:16 修改: 2026-04-15 00:35