docker.io/php:7.4-alpine3.15 linux/amd64

docker.io/php:7.4-alpine3.15 - Trivy安全扫描结果 扫描时间: 2024-12-17 19:27
全部漏洞信息
低危漏洞:4 中危漏洞:41 高危漏洞:28 严重漏洞:5

系统OS: alpine 3.15.6 扫描引擎: Trivy 扫描时间: 2024-12-17 19:27

docker.io/php:7.4-alpine3.15 (alpine 3.15.6) (alpine)
低危漏洞:4 中危漏洞:41 高危漏洞:28 严重漏洞:5
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
curl CVE-2022-32221 严重 7.80.0-r3 7.80.0-r4 curl: POST following PUT confusion

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32221

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2022-12-05 22:15 修改: 2024-03-27 15:00

curl CVE-2023-23914 严重 7.80.0-r3 7.80.0-r6 curl: HSTS ignored on multiple requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23914

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:55

curl CVE-2023-38545 严重 7.80.0-r3 8.4.0-r0 curl: heap based buffer overflow in the SOCKS5 proxy handshake

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38545

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-10-18 04:15 修改: 2024-10-17 22:35

libcurl CVE-2023-23914 严重 7.80.0-r4 7.80.0-r6 curl: HSTS ignored on multiple requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23914

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:55

libcurl CVE-2023-38545 严重 7.80.0-r4 8.4.0-r0 curl: heap based buffer overflow in the SOCKS5 proxy handshake

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38545

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-10-18 04:15 修改: 2024-10-17 22:35

curl CVE-2022-43551 高危 7.80.0-r3 7.80.0-r5 curl: HSTS bypass via IDN

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43551

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2022-12-23 15:15 修改: 2024-03-27 14:58

curl CVE-2023-27533 高危 7.80.0-r3 8.0.1-r0 curl: TELNET option IAC injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27533

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54

curl CVE-2023-27534 高危 7.80.0-r3 8.0.1-r0 curl: SFTP path ~ resolving discrepancy

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54

curl CVE-2023-28319 高危 7.80.0-r3 8.1.0-r0 curl: use after free in SSH sha256 fingerprint check

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28319

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-05-26 21:15 修改: 2023-10-20 18:42

curl CVE-2023-38039 高危 7.80.0-r3 8.3.0-r0 curl: out of heap memory issue due to missing limit on header quantity

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38039

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-09-15 04:15 修改: 2024-04-01 15:45

libcrypto1.1 CVE-2022-4450 高危 1.1.1s-r1 1.1.1t-r0 openssl: double free after calling PEM_read_bio_ex

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15

libcrypto1.1 CVE-2023-0215 高危 1.1.1s-r1 1.1.1t-r0 openssl: use-after-free following BIO_new_NDEF

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15

libcrypto1.1 CVE-2023-0286 高危 1.1.1s-r1 1.1.1t-r0 openssl: X.400 address type confusion in X.509 GeneralName

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15

libcrypto1.1 CVE-2023-0464 高危 1.1.1s-r1 1.1.1t-r2 openssl: Denial of service by excessive resource usage in verifying X509 policy constraints

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15

curl CVE-2022-42915 高危 7.80.0-r3 7.80.0-r4 curl: HTTP proxy double-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42915

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2022-10-29 20:15 修改: 2024-03-27 14:59

curl CVE-2022-42916 高危 7.80.0-r3 7.80.0-r4 curl: HSTS bypass via IDN

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42916

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2022-10-29 02:15 修改: 2024-03-27 14:59

libcurl CVE-2022-43551 高危 7.80.0-r4 7.80.0-r5 curl: HSTS bypass via IDN

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43551

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2022-12-23 15:15 修改: 2024-03-27 14:58

libcurl CVE-2023-27533 高危 7.80.0-r4 8.0.1-r0 curl: TELNET option IAC injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27533

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54

libcurl CVE-2023-27534 高危 7.80.0-r4 8.0.1-r0 curl: SFTP path ~ resolving discrepancy

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54

libcurl CVE-2023-28319 高危 7.80.0-r4 8.1.0-r0 curl: use after free in SSH sha256 fingerprint check

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28319

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-05-26 21:15 修改: 2023-10-20 18:42

libcurl CVE-2023-38039 高危 7.80.0-r4 8.3.0-r0 curl: out of heap memory issue due to missing limit on header quantity

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38039

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-09-15 04:15 修改: 2024-04-01 15:45

libssl1.1 CVE-2022-4450 高危 1.1.1s-r1 1.1.1t-r0 openssl: double free after calling PEM_read_bio_ex

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15

libssl1.1 CVE-2023-0215 高危 1.1.1s-r1 1.1.1t-r0 openssl: use-after-free following BIO_new_NDEF

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15

libssl1.1 CVE-2023-0286 高危 1.1.1s-r1 1.1.1t-r0 openssl: X.400 address type confusion in X.509 GeneralName

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15

libssl1.1 CVE-2023-0464 高危 1.1.1s-r1 1.1.1t-r2 openssl: Denial of service by excessive resource usage in verifying X509 policy constraints

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15

ncurses-libs CVE-2023-29491 高危 6.3_p20211120-r1 6.3_p20211120-r2 ncurses: Local users can trigger security-relevant memory corruption via malformed data

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15

ncurses-terminfo-base CVE-2023-29491 高危 6.3_p20211120-r1 6.3_p20211120-r2 ncurses: Local users can trigger security-relevant memory corruption via malformed data

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15

nghttp2-libs CVE-2023-35945 高危 1.46.0-r0 1.46.0-r1 envoy: HTTP/2 memory leak in nghttp2 codec

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-35945

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-07-13 21:15 修改: 2023-10-24 17:26

nghttp2-libs CVE-2023-44487 高危 1.46.0-r0 1.46.0-r2 HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-10-10 14:15 修改: 2024-08-14 19:57

openssl CVE-2022-4450 高危 1.1.1q-r0 1.1.1t-r0 openssl: double free after calling PEM_read_bio_ex

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15

openssl CVE-2023-0215 高危 1.1.1q-r0 1.1.1t-r0 openssl: use-after-free following BIO_new_NDEF

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15

openssl CVE-2023-0286 高危 1.1.1q-r0 1.1.1t-r0 openssl: X.400 address type confusion in X.509 GeneralName

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15

openssl CVE-2023-0464 高危 1.1.1q-r0 1.1.1t-r2 openssl: Denial of service by excessive resource usage in verifying X509 policy constraints

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15

curl CVE-2023-27538 中危 7.80.0-r3 8.0.1-r0 curl: SSH connection too eager reuse still

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27538

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46

curl CVE-2023-28320 中危 7.80.0-r3 8.1.0-r0 curl: siglongjmp race condition may lead to crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28320

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-05-26 21:15 修改: 2023-10-20 18:42

curl CVE-2023-28321 中危 7.80.0-r3 8.1.0-r0 curl: IDN wildcard match may lead to Improper Cerificate Validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-05-26 21:15 修改: 2023-11-07 04:10

curl CVE-2023-46218 中危 7.80.0-r3 8.5.0-r0 curl: information disclosure by exploiting a mixed case flaw

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15

curl CVE-2023-46219 中危 7.80.0-r3 8.5.0-r0 curl: excessively long file name may lead to unknown HSTS status

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46219

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-12-12 02:15 修改: 2024-01-19 16:15

libcurl CVE-2022-43552 中危 7.80.0-r4 7.80.0-r5 curl: Use-after-free triggered by an HTTP proxy deny response

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35

libcurl CVE-2023-23915 中危 7.80.0-r4 7.80.0-r6 curl: HSTS amnesia with --parallel

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23915

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:55

libcurl CVE-2023-23916 中危 7.80.0-r4 7.80.0-r6 curl: HTTP multi-header compression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54

libcurl CVE-2023-27535 中危 7.80.0-r4 8.0.1-r0 curl: FTP too eager connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47

libcurl CVE-2023-27536 中危 7.80.0-r4 8.0.1-r0 curl: GSS delegation too eager connection re-use

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46

libcurl CVE-2023-27537 中危 7.80.0-r4 8.0.1-r0 curl: HSTS double-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27537

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46

libcurl CVE-2023-27538 中危 7.80.0-r4 8.0.1-r0 curl: SSH connection too eager reuse still

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27538

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46

libcurl CVE-2023-28320 中危 7.80.0-r4 8.1.0-r0 curl: siglongjmp race condition may lead to crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28320

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-05-26 21:15 修改: 2023-10-20 18:42

libcurl CVE-2023-28321 中危 7.80.0-r4 8.1.0-r0 curl: IDN wildcard match may lead to Improper Cerificate Validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-05-26 21:15 修改: 2023-11-07 04:10

libcurl CVE-2023-46218 中危 7.80.0-r4 8.5.0-r0 curl: information disclosure by exploiting a mixed case flaw

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15

libcurl CVE-2023-46219 中危 7.80.0-r4 8.5.0-r0 curl: excessively long file name may lead to unknown HSTS status

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46219

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-12-12 02:15 修改: 2024-01-19 16:15

curl CVE-2022-43552 中危 7.80.0-r3 7.80.0-r5 curl: Use-after-free triggered by an HTTP proxy deny response

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35

curl CVE-2023-23915 中危 7.80.0-r3 7.80.0-r6 curl: HSTS amnesia with --parallel

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23915

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:55

curl CVE-2023-23916 中危 7.80.0-r3 7.80.0-r6 curl: HTTP multi-header compression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54

curl CVE-2023-27535 中危 7.80.0-r3 8.0.1-r0 curl: FTP too eager connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47

libssl1.1 CVE-2022-4304 中危 1.1.1s-r1 1.1.1t-r0 openssl: timing attack in RSA Decryption implementation

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15

libssl1.1 CVE-2023-0465 中危 1.1.1s-r1 1.1.1t-r2 openssl: Invalid certificate policies in leaf certificates are silently ignored

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15

libssl1.1 CVE-2023-2650 中危 1.1.1s-r1 1.1.1u-r0 openssl: Possible DoS translating ASN.1 object identifiers

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15

libssl1.1 CVE-2023-3446 中危 1.1.1s-r1 1.1.1u-r2 openssl: Excessive time spent checking DH keys and parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15

libssl1.1 CVE-2023-3817 中危 1.1.1s-r1 1.1.1v-r0 OpenSSL: Excessive time spent checking DH q parameter value

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15

libssl1.1 CVE-2023-5678 中危 1.1.1s-r1 1.1.1w-r1 openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15

libcrypto1.1 CVE-2022-4304 中危 1.1.1s-r1 1.1.1t-r0 openssl: timing attack in RSA Decryption implementation

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15

libcrypto1.1 CVE-2023-0465 中危 1.1.1s-r1 1.1.1t-r2 openssl: Invalid certificate policies in leaf certificates are silently ignored

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15

libcrypto1.1 CVE-2023-2650 中危 1.1.1s-r1 1.1.1u-r0 openssl: Possible DoS translating ASN.1 object identifiers

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15

libcrypto1.1 CVE-2023-3446 中危 1.1.1s-r1 1.1.1u-r2 openssl: Excessive time spent checking DH keys and parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15

libcrypto1.1 CVE-2023-3817 中危 1.1.1s-r1 1.1.1v-r0 OpenSSL: Excessive time spent checking DH q parameter value

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15

libcrypto1.1 CVE-2023-5678 中危 1.1.1s-r1 1.1.1w-r1 openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15

curl CVE-2023-27536 中危 7.80.0-r3 8.0.1-r0 curl: GSS delegation too eager connection re-use

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46

curl CVE-2023-27537 中危 7.80.0-r3 8.0.1-r0 curl: HSTS double-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27537

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46

openssl CVE-2022-4304 中危 1.1.1q-r0 1.1.1t-r0 openssl: timing attack in RSA Decryption implementation

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15

openssl CVE-2023-0465 中危 1.1.1q-r0 1.1.1t-r2 openssl: Invalid certificate policies in leaf certificates are silently ignored

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15

openssl CVE-2023-2650 中危 1.1.1q-r0 1.1.1u-r0 openssl: Possible DoS translating ASN.1 object identifiers

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15

openssl CVE-2023-3446 中危 1.1.1q-r0 1.1.1u-r2 openssl: Excessive time spent checking DH keys and parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15

openssl CVE-2023-3817 中危 1.1.1q-r0 1.1.1v-r0 OpenSSL: Excessive time spent checking DH q parameter value

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15

openssl CVE-2023-5678 中危 1.1.1q-r0 1.1.1w-r1 openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15

tar CVE-2022-48303 中危 1.34-r0 1.34-r1 tar: heap buffer overflow at from_header() in list.c via specially crafted checksum

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48303

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-01-30 04:15 修改: 2023-05-30 17:16

curl CVE-2023-38546 低危 7.80.0-r3 8.4.0-r0 curl: cookie injection with none file

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15

libcurl CVE-2023-28322 低危 7.80.0-r4 8.1.0-r0 curl: more POST-after-PUT confusion

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15

libcurl CVE-2023-38546 低危 7.80.0-r4 8.4.0-r0 curl: cookie injection with none file

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546

镜像层: sha256:3c9a010d934d6c750fd61d4186c674663163dfb58a756104fac3cf902b80a6bc

发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15

curl CVE-2023-28322 低危 7.80.0-r3 8.1.0-r0 curl: more POST-after-PUT confusion

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322

镜像层: sha256:8de7d7966fc26d0dab5901f0201da6b6b74775c152a4aef5e907c37808bf7677

发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15