docker.io/rancher/mirrored-longhornio-longhorn-instance-manager:v1.11.1 linux/amd64

docker.io/rancher/mirrored-longhornio-longhorn-instance-manager:v1.11.1 - Trivy安全扫描结果 扫描时间: 2026-05-20 15:12
全部漏洞信息
低危漏洞:4 中危漏洞:41 高危漏洞:49 严重漏洞:2

系统OS: sles 15.7 扫描引擎: Trivy 扫描时间: 2026-05-20 15:12

docker.io/rancher/mirrored-longhornio-longhorn-instance-manager:v1.11.1 (sles 15.7) (sles)
低危漏洞:3 中危漏洞:20 高危漏洞:24 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
curl SUSE-SU-2026:0903-1 高危 8.14.1-150700.7.11.1 8.14.1-150700.7.14.1 Security update for curl

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glibc SUSE-SU-2026:1369-1 高危 2.38-150600.14.43.1 2.38-150600.14.46.1 Security update for glibc

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glibc-devel SUSE-SU-2026:1369-1 高危 2.38-150600.14.43.1 2.38-150600.14.46.1 Security update for glibc

漏洞详情:

镜像层: sha256:0de617f9afa6d344af19e3d2d2aedd9aba22372b2451bea95a12b6224d5d1895

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcap2 SUSE-SU-2026:1432-1 高危 2.63-150400.3.3.1 2.63-150400.3.6.1 Security update for libcap

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl4 SUSE-SU-2026:0903-1 高危 8.14.1-150700.7.11.1 8.14.1-150700.7.14.1 Security update for curl

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libexpat1 SUSE-SU-2026:1352-1 高危 2.7.1-150700.3.9.2 2.7.1-150700.3.12.1 Security update for expat

漏洞详情:

镜像层: sha256:0de617f9afa6d344af19e3d2d2aedd9aba22372b2451bea95a12b6224d5d1895

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libnghttp2-14 SUSE-SU-2026:1074-1 高危 1.64.0-150700.1.5 1.64.0-150700.3.3.1 Security update for nghttp2

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libopenssl-3-devel SUSE-SU-2026:1375-1 高危 3.2.3-150700.5.24.1 3.2.3-150700.5.31.1 Security update for openssl-3

漏洞详情:

镜像层: sha256:7bc44888b38b1ccda3794c342ae9a8c0d902ddf8d6fdda26283158bdfc0f002a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libopenssl-3-fips-provider SUSE-SU-2026:1375-1 高危 3.2.3-150700.5.24.1 3.2.3-150700.5.31.1 Security update for openssl-3

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libopenssl1_1 SUSE-SU-2026:1386-1 高危 1.1.1w-150700.11.11.1 1.1.1w-150700.11.16.1 Security update for openssl-1_1

漏洞详情:

镜像层: sha256:0de617f9afa6d344af19e3d2d2aedd9aba22372b2451bea95a12b6224d5d1895

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libopenssl3 SUSE-SU-2026:1375-1 高危 3.2.3-150700.5.24.1 3.2.3-150700.5.31.1 Security update for openssl-3

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libpython3_11-1_0 SUSE-SU-2026:1349-1 高危 3.11.14-150600.3.44.1 3.11.15-150600.3.53.1 Security update for python311

漏洞详情:

镜像层: sha256:0de617f9afa6d344af19e3d2d2aedd9aba22372b2451bea95a12b6224d5d1895

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libpython3_6m1_0 SUSE-SU-2026:1090-1 高危 3.6.15-150300.10.106.1 3.6.15-150300.10.109.1 Security update for python3

漏洞详情:

镜像层: sha256:0de617f9afa6d344af19e3d2d2aedd9aba22372b2451bea95a12b6224d5d1895

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libpython3_6m1_0 SUSE-SU-2026:1715-1 高危 3.6.15-150300.10.106.1 3.6.15-150300.10.118.1 Security update for python3

漏洞详情:

镜像层: sha256:0de617f9afa6d344af19e3d2d2aedd9aba22372b2451bea95a12b6224d5d1895

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libsystemd0 SUSE-SU-2026:1040-1 高危 254.27-150600.4.55.1 254.27-150600.4.62.1 Security update for systemd

漏洞详情:

镜像层: sha256:0de617f9afa6d344af19e3d2d2aedd9aba22372b2451bea95a12b6224d5d1895

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libudev1 SUSE-SU-2026:1040-1 高危 254.27-150600.4.55.1 254.27-150600.4.62.1 Security update for systemd

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
login_defs SUSE-RU-2026:1228-1 高危 4.8.1-150600.17.9.1 4.17.2-150600.17.18.1 Recommended update for shadow

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
openssl-3 SUSE-SU-2026:1375-1 高危 3.2.3-150700.5.24.1 3.2.3-150700.5.31.1 Security update for openssl-3

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
python3-base SUSE-SU-2026:1090-1 高危 3.6.15-150300.10.106.1 3.6.15-150300.10.109.1 Security update for python3

漏洞详情:

镜像层: sha256:0de617f9afa6d344af19e3d2d2aedd9aba22372b2451bea95a12b6224d5d1895

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
python3-base SUSE-SU-2026:1715-1 高危 3.6.15-150300.10.106.1 3.6.15-150300.10.118.1 Security update for python3

漏洞详情:

镜像层: sha256:0de617f9afa6d344af19e3d2d2aedd9aba22372b2451bea95a12b6224d5d1895

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
python311-base SUSE-SU-2026:1349-1 高危 3.11.14-150600.3.44.1 3.11.15-150600.3.53.1 Security update for python311

漏洞详情:

镜像层: sha256:0de617f9afa6d344af19e3d2d2aedd9aba22372b2451bea95a12b6224d5d1895

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
shadow SUSE-RU-2026:1228-1 高危 4.8.1-150600.17.9.1 4.17.2-150600.17.18.1 Recommended update for shadow

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
systemd SUSE-SU-2026:1040-1 高危 254.27-150600.4.55.1 254.27-150600.4.62.1 Security update for systemd

漏洞详情:

镜像层: sha256:f1aaa24b8a8167eafa3cb7f64b159756ade155091bf6995bef6217cbeb925ea8

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tar SUSE-SU-2026:1177-1 高危 1.34-150000.3.34.1 1.34-150000.3.37.1 Security update for tar

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libssh4 SUSE-SU-2026:1310-1 中危 0.9.8-150600.11.9.1 0.9.8-150600.11.12.1 Security update for libssh

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavahi-common3 SUSE-SU-2026:1441-1 中危 0.8-150600.15.12.1 0.8-150600.15.15.1 Security update for avahi

漏洞详情:

镜像层: sha256:533a71ff602b2649ecd96ce1e89dc069b2b8c66690c6a56e32bfcb9dddbf4402

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libblkid1 SUSE-SU-2026:1406-1 中危 2.40.4-150700.4.3.1 2.40.4-150700.4.10.1 Security update for util-linux

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libuuid-devel SUSE-SU-2026:1406-1 中危 2.40.4-150700.4.3.1 2.40.4-150700.4.10.1 Security update for util-linux

漏洞详情:

镜像层: sha256:7bc44888b38b1ccda3794c342ae9a8c0d902ddf8d6fdda26283158bdfc0f002a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libuuid1 SUSE-SU-2026:1406-1 中危 2.40.4-150700.4.3.1 2.40.4-150700.4.10.1 Security update for util-linux

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libfdisk1 SUSE-SU-2026:1406-1 中危 2.40.4-150700.4.3.1 2.40.4-150700.4.10.1 Security update for util-linux

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
ncurses-devel SUSE-SU-2026:1510-1 中危 6.1-150000.5.30.1 6.1-150000.5.33.1 Security update for ncurses

漏洞详情:

镜像层: sha256:7bc44888b38b1ccda3794c342ae9a8c0d902ddf8d6fdda26283158bdfc0f002a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
ncurses-utils SUSE-SU-2026:1510-1 中危 6.1-150000.5.30.1 6.1-150000.5.33.1 Security update for ncurses

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nfs-client SUSE-SU-2026:1356-1 中危 2.6.4-150600.28.12.1 2.6.4-150600.28.19.1 Security update for nfs-utils

漏洞详情:

镜像层: sha256:f1aaa24b8a8167eafa3cb7f64b159756ade155091bf6995bef6217cbeb925ea8

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libmount1 SUSE-SU-2026:1406-1 中危 2.40.4-150700.4.3.1 2.40.4-150700.4.10.1 Security update for util-linux

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libncurses6 SUSE-SU-2026:1510-1 中危 6.1-150000.5.30.1 6.1-150000.5.33.1 Security update for ncurses

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libnfsidmap1 SUSE-SU-2026:1356-1 中危 1.0-150600.28.12.1 1.0-150600.28.19.1 Security update for nfs-utils

漏洞详情:

镜像层: sha256:f1aaa24b8a8167eafa3cb7f64b159756ade155091bf6995bef6217cbeb925ea8

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavahi-client3 SUSE-SU-2026:1441-1 中危 0.8-150600.15.12.1 0.8-150600.15.15.1 Security update for avahi

漏洞详情:

镜像层: sha256:533a71ff602b2649ecd96ce1e89dc069b2b8c66690c6a56e32bfcb9dddbf4402

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libsmartcols1 SUSE-SU-2026:1406-1 中危 2.40.4-150700.4.3.1 2.40.4-150700.4.10.1 Security update for util-linux

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libsqlite3-0 SUSE-SU-2026:1065-1 中危 3.51.2-150000.3.36.1 3.51.3-150000.3.39.1 Security update for sqlite3

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tack SUSE-SU-2026:1510-1 中危 6.1-150000.5.30.1 6.1-150000.5.33.1 Security update for ncurses

漏洞详情:

镜像层: sha256:7bc44888b38b1ccda3794c342ae9a8c0d902ddf8d6fdda26283158bdfc0f002a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libssh-config SUSE-SU-2026:1310-1 中危 0.9.8-150600.11.9.1 0.9.8-150600.11.12.1 Security update for libssh

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
terminfo-base SUSE-SU-2026:1510-1 中危 6.1-150000.5.30.1 6.1-150000.5.33.1 Security update for ncurses

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
util-linux SUSE-SU-2026:1406-1 中危 2.40.4-150700.4.3.1 2.40.4-150700.4.10.1 Security update for util-linux

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
util-linux-systemd SUSE-SU-2026:1406-1 中危 2.40.4-150700.4.3.1 2.40.4-150700.4.10.1 Security update for util-linux

漏洞详情:

镜像层: sha256:f1aaa24b8a8167eafa3cb7f64b159756ade155091bf6995bef6217cbeb925ea8

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
iproute2 SUSE-SU-2026:1418-1 低危 6.4-150600.7.9.1 6.4-150600.7.12.1 Security update for iproute2

漏洞详情:

镜像层: sha256:e516061fa54c82f4c59aca2f64dd6f050b594f6bda8ed98853c8db722e1790ed

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libjq1 SUSE-SU-2026:0931-1 低危 1.6-150000.3.9.1 1.6-150000.3.12.1 Security update for jq

漏洞详情:

镜像层: sha256:0de617f9afa6d344af19e3d2d2aedd9aba22372b2451bea95a12b6224d5d1895

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
jq SUSE-SU-2026:0931-1 低危 1.6-150000.3.9.1 1.6-150000.3.12.1 Security update for jq

漏洞详情:

镜像层: sha256:0de617f9afa6d344af19e3d2d2aedd9aba22372b2451bea95a12b6224d5d1895

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
container-suseconnect SUSE-SU-2026:1484-1 未知 2.5.6-150000.4.80.2 2.5.6-150000.4.84.1 Security update for container-suseconnect

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
container-suseconnect SUSE-SU-2026:0909-1 未知 2.5.6-150000.4.80.2 2.5.6-150000.4.82.1 Security update for container-suseconnect

漏洞详情:

镜像层: sha256:249f105fd68d97e6f460dd7c74eed8230e67cd56c328849c7e764b189a1659c2

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
Python (python-pkg)
低危漏洞:1 中危漏洞:1 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
cryptography CVE-2026-39892 中危 46.0.5 46.0.7 cryptography: Cryptography: Buffer overflow via non-contiguous buffer in API

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39892

镜像层: sha256:0a2cc4e1128653156ef50b2b3237fbbb7ac2659f294134b216ae7bf94d3241c1

发布日期: 2026-04-08 21:17 修改: 2026-04-15 16:12
cryptography CVE-2026-34073 低危 46.0.5 46.0.6 python-cryptography: Cryptography: Security bypass due to improper DNS name constraint validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34073

镜像层: sha256:0a2cc4e1128653156ef50b2b3237fbbb7ac2659f294134b216ae7bf94d3241c1

发布日期: 2026-03-31 03:15 修改: 2026-04-06 15:30
usr/local/bin/go-spdk-helper (gobinary)
低危漏洞:0 中危漏洞:6 高危漏洞:8 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2026-32280 高危 v1.25.8 1.25.9, 1.26.2 crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32280

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:16
stdlib CVE-2026-32281 高危 v1.25.8 1.25.9, 1.26.2 crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32281

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32283 高危 v1.25.8 1.25.9, 1.26.2 crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32283

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:12
stdlib CVE-2026-33811 高危 v1.25.8 1.25.10, 1.26.3 When using LookupCNAME with the cgo DNS resolver, a very long CNAME re ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-12 20:23
stdlib CVE-2026-33814 高危 v1.25.8 1.25.10, 1.26.3 When processing HTTP/2 SETTINGS frames, transport will enter an infini ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-08 19:16
stdlib CVE-2026-39820 高危 v1.25.8 1.25.10, 1.26.3 Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib CVE-2026-39836 高危 v1.25.8 1.25.10, 1.26.3 Panic in Dial and LookupPort when handling NUL byte on Windows in net

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib CVE-2026-42499 高危 v1.25.8 1.25.10, 1.26.3 Pathological inputs could cause DoS through consumePhrase when parsing ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib CVE-2026-32282 中危 v1.25.8 1.25.9, 1.26.2 golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32282

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32288 中危 v1.25.8 1.25.9, 1.26.2 archive/tar: golang: Go's archive/tar package: Denial of Service via maliciously-crafted archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32288

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:08
stdlib CVE-2026-32289 中危 v1.25.8 1.25.9, 1.26.2 html/template: golang: html/template: Cross-Site Scripting (XSS) via improper context and brace depth tracking in JS template literals

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32289

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:06
stdlib CVE-2026-39823 中危 v1.25.8 1.25.10, 1.26.3 CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib CVE-2026-39825 中危 v1.25.8 1.25.10, 1.26.3 ReverseProxy can forward queries containing parameters not visible to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib CVE-2026-39826 中危 v1.25.8 1.25.10, 1.26.3 If a trusted template author were to write a <script> tag containing a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
usr/local/bin/grpc_health_probe (gobinary)
低危漏洞:0 中危漏洞:6 高危漏洞:9 严重漏洞:1
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
google.golang.org/grpc CVE-2026-33186 严重 v1.79.1 1.79.3 google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33186

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-03-20 23:16 修改: 2026-04-10 20:49
github.com/go-jose/go-jose/v4 CVE-2026-34986 高危 v4.1.3 4.1.4 github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34986

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-04-06 17:17 修改: 2026-05-04 15:20
stdlib CVE-2026-32280 高危 v1.25.8 1.25.9, 1.26.2 crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32280

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:16
stdlib CVE-2026-32281 高危 v1.25.8 1.25.9, 1.26.2 crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32281

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32283 高危 v1.25.8 1.25.9, 1.26.2 crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32283

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:12
stdlib CVE-2026-33811 高危 v1.25.8 1.25.10, 1.26.3 When using LookupCNAME with the cgo DNS resolver, a very long CNAME re ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-12 20:23
stdlib CVE-2026-33814 高危 v1.25.8 1.25.10, 1.26.3 When processing HTTP/2 SETTINGS frames, transport will enter an infini ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-08 19:16
stdlib CVE-2026-39820 高危 v1.25.8 1.25.10, 1.26.3 Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib CVE-2026-39836 高危 v1.25.8 1.25.10, 1.26.3 Panic in Dial and LookupPort when handling NUL byte on Windows in net

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib CVE-2026-42499 高危 v1.25.8 1.25.10, 1.26.3 Pathological inputs could cause DoS through consumePhrase when parsing ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib CVE-2026-32282 中危 v1.25.8 1.25.9, 1.26.2 golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32282

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32288 中危 v1.25.8 1.25.9, 1.26.2 archive/tar: golang: Go's archive/tar package: Denial of Service via maliciously-crafted archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32288

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:08
stdlib CVE-2026-32289 中危 v1.25.8 1.25.9, 1.26.2 html/template: golang: html/template: Cross-Site Scripting (XSS) via improper context and brace depth tracking in JS template literals

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32289

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:06
stdlib CVE-2026-39823 中危 v1.25.8 1.25.10, 1.26.3 CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib CVE-2026-39825 中危 v1.25.8 1.25.10, 1.26.3 ReverseProxy can forward queries containing parameters not visible to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib CVE-2026-39826 中危 v1.25.8 1.25.10, 1.26.3 If a trusted template author were to write a <script> tag containing a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826

镜像层: sha256:f4ef1677dcccb8e70b3376e4593e3825f6e991668f5d2a6f6d72d8382d0b6be3

发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
usr/local/bin/longhorn-instance-manager (gobinary)
低危漏洞:0 中危漏洞:8 高危漏洞:8 严重漏洞:1
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
google.golang.org/grpc CVE-2026-33186 严重 v1.79.2 1.79.3 google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33186

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-03-20 23:16 修改: 2026-04-10 20:49
stdlib CVE-2026-32280 高危 v1.25.8 1.25.9, 1.26.2 crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32280

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:16
stdlib CVE-2026-32281 高危 v1.25.8 1.25.9, 1.26.2 crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32281

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32283 高危 v1.25.8 1.25.9, 1.26.2 crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32283

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:12
stdlib CVE-2026-33811 高危 v1.25.8 1.25.10, 1.26.3 When using LookupCNAME with the cgo DNS resolver, a very long CNAME re ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-05-07 20:16 修改: 2026-05-12 20:23
stdlib CVE-2026-33814 高危 v1.25.8 1.25.10, 1.26.3 When processing HTTP/2 SETTINGS frames, transport will enter an infini ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-05-07 20:16 修改: 2026-05-08 19:16
stdlib CVE-2026-39820 高危 v1.25.8 1.25.10, 1.26.3 Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib CVE-2026-39836 高危 v1.25.8 1.25.10, 1.26.3 Panic in Dial and LookupPort when handling NUL byte on Windows in net

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib CVE-2026-42499 高危 v1.25.8 1.25.10, 1.26.3 Pathological inputs could cause DoS through consumePhrase when parsing ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
github.com/aws/aws-sdk-go-v2/service/s3 GHSA-xmrv-pmrh-hhx2 中危 v1.96.2 1.97.3 Denial of Service due to Panic in AWS SDK for Go v2 SDK EventStream Decoder

漏洞详情: https://github.com/advisories/GHSA-xmrv-pmrh-hhx2

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-04-08 00:18 修改: 2026-04-08 00:18
github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream GHSA-xmrv-pmrh-hhx2 中危 v1.7.5 1.7.8 Denial of Service due to Panic in AWS SDK for Go v2 SDK EventStream Decoder

漏洞详情: https://github.com/advisories/GHSA-xmrv-pmrh-hhx2

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-04-08 00:18 修改: 2026-04-08 00:18
stdlib CVE-2026-32282 中危 v1.25.8 1.25.9, 1.26.2 golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32282

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32288 中危 v1.25.8 1.25.9, 1.26.2 archive/tar: golang: Go's archive/tar package: Denial of Service via maliciously-crafted archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32288

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:08
stdlib CVE-2026-32289 中危 v1.25.8 1.25.9, 1.26.2 html/template: golang: html/template: Cross-Site Scripting (XSS) via improper context and brace depth tracking in JS template literals

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32289

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:06
stdlib CVE-2026-39823 中危 v1.25.8 1.25.10, 1.26.3 CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib CVE-2026-39825 中危 v1.25.8 1.25.10, 1.26.3 ReverseProxy can forward queries containing parameters not visible to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib CVE-2026-39826 中危 v1.25.8 1.25.10, 1.26.3 If a trusted template author were to write a <script> tag containing a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826

镜像层: sha256:a0391492a32d549911b16bc08ba34f3ea5cc17d7c7c4bc3e46cded9974212edf

发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16