docker.io/secreport/editor-sync:latest linux/amd64

docker.io/secreport/editor-sync:latest - Trivy安全扫描结果 扫描时间: 2026-06-24 16:49
全部漏洞信息
低危漏洞:27 中危漏洞:11 高危漏洞:7 严重漏洞:1

系统OS: debian 12.12 扫描引擎: Trivy 扫描时间: 2026-06-24 16:49

docker.io/secreport/editor-sync:latest (debian 12.12) (debian)
低危漏洞:27 中危漏洞:11 高危漏洞:7 严重漏洞:1
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
libssl3 CVE-2026-31789 严重 3.0.17-1~deb12u3 3.0.19-1~deb12u2 openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34
libssl3 CVE-2025-15467 高危 3.0.17-1~deb12u3 3.0.18-1~deb12u2 openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-01-27 16:16 修改: 2026-06-17 08:37
libssl3 CVE-2025-69421 高危 3.0.17-1~deb12u3 3.0.18-1~deb12u2 openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
libssl3 CVE-2026-28387 高危 3.0.17-1~deb12u3 3.0.19-1~deb12u2 openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
libssl3 CVE-2026-28388 高危 3.0.17-1~deb12u3 3.0.19-1~deb12u2 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
libssl3 CVE-2026-28389 高危 3.0.17-1~deb12u3 3.0.19-1~deb12u2 openssl: OpenSSL: Denial of Service vulnerability in CMS processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
libssl3 CVE-2026-28390 高危 3.0.17-1~deb12u3 3.0.19-1~deb12u2 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
libssl3 CVE-2026-45447 高危 3.0.17-1~deb12u3 3.0.20-1~deb12u2 openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52
libc6 CVE-2026-4046 中危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Denial of Service via iconv() function with specific character sets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55
libc6 CVE-2026-4437 中危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Incorrect DNS response parsing via crafted DNS server response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
libc6 CVE-2026-5435 中危 2.36-9+deb12u13 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59
libc6 CVE-2026-5450 中危 2.36-9+deb12u13 glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59
libc6 CVE-2026-5928 中危 2.36-9+deb12u13 glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59
libc6 CVE-2026-6238 中危 2.36-9+deb12u13 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17
libc6 CVE-2026-0915 中危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Information disclosure via zero-valued network query

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-01-15 22:16 修改: 2026-06-17 10:11
libssl3 CVE-2025-69419 中危 3.0.17-1~deb12u3 3.0.18-1~deb12u2 openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
libssl3 CVE-2026-31790 中危 3.0.17-1~deb12u3 3.0.19-1~deb12u2 openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34
libssl3 CVE-2026-34182 中危 3.0.17-1~deb12u3 3.0.20-1~deb12u2 openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
libssl3 CVE-2026-45445 中危 3.0.17-1~deb12u3 3.0.20-1~deb12u2 openssl: AES-OCB IV Ignored on EVP_Cipher() Path

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52
libgomp1 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:2401c5ea32a75452bc4b02a664c80cf63f197704653926fca19e22e6cbc85652

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37
gcc-12-base CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:7095412417d2dce289b77f7a8c632a07c82b707fe43cfef7368c3b65c8d2538a

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37
libc6 CVE-2010-4756 低危 2.36-9+deb12u13 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
libc6 CVE-2018-20796 低危 2.36-9+deb12u13 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2019-02-26 02:29 修改: 2026-06-17 01:53
libc6 CVE-2019-1010022 低危 2.36-9+deb12u13 glibc: stack guard protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
libc6 CVE-2019-1010023 低危 2.36-9+deb12u13 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
libc6 CVE-2019-1010024 低危 2.36-9+deb12u13 glibc: ASLR bypass using cache of thread stack and heap

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
libc6 CVE-2019-1010025 低危 2.36-9+deb12u13 glibc: information disclosure of heap addresses of pthread_created thread

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
libc6 CVE-2019-9192 低危 2.36-9+deb12u13 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2019-02-26 18:29 修改: 2026-06-17 02:43
libc6 CVE-2025-15281 低危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-01-20 14:16 修改: 2026-06-17 08:37
libc6 CVE-2026-0861 低危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: Integer overflow in memalign leads to heap corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-01-14 21:15 修改: 2026-06-17 10:11
libc6 CVE-2026-4438 低危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
libgcc-s1 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:c3abae442368dc447f15c468933843c361f227f5d87b2bb86515b49f40583ed9

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37
libssl3 CVE-2025-27587 低危 3.0.17-1~deb12u3 OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2025-06-16 22:15 修改: 2026-06-17 09:03
libssl3 CVE-2025-68160 低危 3.0.17-1~deb12u3 3.0.18-1~deb12u2 openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:58
libssl3 CVE-2025-69418 低危 3.0.17-1~deb12u3 3.0.18-1~deb12u2 openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
libssl3 CVE-2025-69420 低危 3.0.17-1~deb12u3 3.0.18-1~deb12u2 openssl: OpenSSL: Denial of Service via malformed TimeStamp Response

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
libssl3 CVE-2026-22795 低危 3.0.17-1~deb12u3 3.0.18-1~deb12u2 openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20
libssl3 CVE-2026-22796 低危 3.0.17-1~deb12u3 3.0.18-1~deb12u2 openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20
libssl3 CVE-2026-34180 低危 3.0.17-1~deb12u3 3.0.20-1~deb12u2 openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
libssl3 CVE-2026-42766 低危 3.0.17-1~deb12u3 3.0.20-1~deb12u2 openssl: Possible NULL Dereference in Password-Based CMS Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
libssl3 CVE-2026-42767 低危 3.0.17-1~deb12u3 openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
libssl3 CVE-2026-42770 低危 3.0.17-1~deb12u3 3.0.20-1~deb12u2 openssl: FFC-DH Peer Validation Uses Attacker-Supplied q

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
libssl3 CVE-2026-45446 低危 3.0.17-1~deb12u3 3.0.20-1~deb12u2 openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52
libssl3 CVE-2026-7383 低危 3.0.17-1~deb12u3 3.0.20-1~deb12u2 openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:02
libssl3 CVE-2026-9076 低危 3.0.17-1~deb12u3 3.0.20-1~deb12u2 openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076

镜像层: sha256:8127a9673224dfe54799359062e838de50453d217ddc48df68bf3615828b86d9

发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:04
libstdc++6 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:6819a1af097df543d58dc30b51f737e55f3f42a9a04e641f175834a55bf0629c

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37
检测到您正在使用广告拦截插件,本站为公益站点,依赖广告维持运转 🙏 查看如何关闭 ×