docker.io/selenium/standalone-chrome:4.15.0-20231122 linux/amd64

docker.io/selenium/standalone-chrome:4.15.0-20231122 - Trivy安全扫描结果 扫描时间: 2025-02-08 23:35
全部漏洞信息
低危漏洞:132 中危漏洞:232 高危漏洞:2 严重漏洞:0

系统OS: ubuntu 22.04 扫描引擎: Trivy 扫描时间: 2025-02-08 23:35

docker.io/selenium/standalone-chrome:4.15.0-20231122 (ubuntu 22.04) (ubuntu)
低危漏洞:132 中危漏洞:228 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
libnghttp2-14 CVE-2023-44487 高危 1.43.0-1build3 1.43.0-1ubuntu0.1 HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-10-10 14:15 修改: 2024-12-20 17:40
bsdutils CVE-2024-28085 中危 1:2.37.2-4ubuntu3 2.37.2-4ubuntu3.3 util-linux: CVE-2024-28085: wall: escape sequence injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
cpp-11 CVE-2023-4039 中危 11.4.0-1ubuntu1~22.04 gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
curl CVE-2023-46218 中危 7.81.0-1ubuntu1.14 7.81.0-1ubuntu1.15 curl: information disclosure by exploiting a mixed case flaw

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
curl CVE-2024-2398 中危 7.81.0-1ubuntu1.14 7.81.0-1ubuntu1.16 curl: HTTP/2 push headers memory-leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
curl CVE-2024-7264 中危 7.81.0-1ubuntu1.14 7.81.0-1ubuntu1.17 curl: libcurl: ASN.1 date parser overread

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-07-31 08:15 修改: 2024-10-30 20:35
curl CVE-2024-8096 中危 7.81.0-1ubuntu1.14 7.81.0-1ubuntu1.18 curl: OCSP stapling bypass with GnuTLS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8096

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-09-11 10:15 修改: 2024-09-11 16:26
gcc-11-base CVE-2023-4039 中危 11.4.0-1ubuntu1~22.04 gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
gcc-12-base CVE-2023-4039 中危 12.3.0-1ubuntu1~22.04 gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
gstreamer1.0-plugins-base CVE-2024-4453 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.2 gstreamer: EXIF Metadata Parsing Integer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4453

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-05-22 20:15 修改: 2024-12-17 16:05
gstreamer1.0-plugins-base CVE-2024-47538 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.4 gstreamer1-plugins-base: GStreamer has a stack-buffer overflow in vorbis_handle_identification_packet

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47538

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-12 02:03 修改: 2024-12-19 22:15
gstreamer1.0-plugins-base CVE-2024-47541 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.4 gstreamer1-plugins-base: GStreamer has an out-of-bounds write in SSA subtitle parser

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47541

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-12 02:03 修改: 2024-12-13 19:21
gstreamer1.0-plugins-base CVE-2024-47542 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.4 gstreamer1-plugins-base: ID3v2 parser out-of-bounds read and NULL-pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47542

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-12 02:03 修改: 2024-12-13 19:03
gstreamer1.0-plugins-base CVE-2024-47600 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.4 gstreamer1-plugins-base: GStreamer has an OOB-read in format_channel_mask

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47600

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-12 02:03 修改: 2024-12-18 21:43
gstreamer1.0-plugins-base CVE-2024-47607 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.4 gstreamer1-plugins-base: stack-buffer overflow in gst_opus_dec_parse_header

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47607

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-12 02:03 修改: 2024-12-18 19:53
gstreamer1.0-plugins-base CVE-2024-47615 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.4 gstreamer1-plugins-base: out-of-bounds write in Ogg demuxer

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47615

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-12 02:03 修改: 2024-12-18 19:57
gstreamer1.0-plugins-base CVE-2024-47835 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.4 gstreamer1-plugins-base: NULL-pointer dereference in LRC subtitle parser

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47835

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-12 02:03 修改: 2024-12-18 19:45
gtk-update-icon-cache CVE-2024-6655 中危 3.24.33-1ubuntu2 3.24.33-1ubuntu2.2 gtk3: gtk2: Library injection from CWD

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6655

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2024-07-16 15:15 修改: 2024-11-12 17:15
libapparmor1 CVE-2016-1585 中危 3.0.4-2ubuntu2.3 3.0.4-2ubuntu2.4 In all versions of AppArmor mount rules are accidentally widened when ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-1585

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2019-04-22 16:29 修改: 2023-11-07 02:29
libavahi-client3 CVE-2024-52615 中危 0.8-5ubuntu5.2 avahi: Avahi Wide-Area DNS Uses Constant Source Port

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-11-21 21:15 修改: 2024-11-21 21:15
libavahi-client3 CVE-2024-52616 中危 0.8-5ubuntu5.2 avahi: Avahi Wide-Area DNS Predictable Transaction IDs

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-11-21 21:15 修改: 2024-11-21 21:15
libavahi-common-data CVE-2024-52615 中危 0.8-5ubuntu5.2 avahi: Avahi Wide-Area DNS Uses Constant Source Port

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-11-21 21:15 修改: 2024-11-21 21:15
libavahi-common-data CVE-2024-52616 中危 0.8-5ubuntu5.2 avahi: Avahi Wide-Area DNS Predictable Transaction IDs

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-11-21 21:15 修改: 2024-11-21 21:15
libavahi-common3 CVE-2024-52615 中危 0.8-5ubuntu5.2 avahi: Avahi Wide-Area DNS Uses Constant Source Port

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-11-21 21:15 修改: 2024-11-21 21:15
libavahi-common3 CVE-2024-52616 中危 0.8-5ubuntu5.2 avahi: Avahi Wide-Area DNS Predictable Transaction IDs

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-11-21 21:15 修改: 2024-11-21 21:15
libblkid1 CVE-2024-28085 中危 2.37.2-4ubuntu3 2.37.2-4ubuntu3.3 util-linux: CVE-2024-28085: wall: escape sequence injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
libc-bin CVE-2023-5156 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.5 glibc: DoS due to memory leak in getaddrinfo.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5156

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-09-25 16:15 修改: 2024-09-14 03:15
libc-bin CVE-2024-2961 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.7 glibc: Out of bounds write in iconv may lead to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
libc-bin CVE-2024-33599 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.8 glibc: stack-based buffer overflow in netgroup cache

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc-bin CVE-2024-33600 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.8 glibc: null pointer dereferences after failed netgroup cache insertion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc-bin CVE-2024-33601 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.8 glibc: netgroup cache may terminate daemon on memory allocation failure

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc-bin CVE-2024-33602 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.8 glibc: netgroup cache assumes NSS callback uses in-buffer strings

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc6 CVE-2023-5156 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.5 glibc: DoS due to memory leak in getaddrinfo.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5156

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-09-25 16:15 修改: 2024-09-14 03:15
libc6 CVE-2024-2961 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.7 glibc: Out of bounds write in iconv may lead to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
libc6 CVE-2024-33599 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.8 glibc: stack-based buffer overflow in netgroup cache

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc6 CVE-2024-33600 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.8 glibc: null pointer dereferences after failed netgroup cache insertion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc6 CVE-2024-33601 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.8 glibc: netgroup cache may terminate daemon on memory allocation failure

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc6 CVE-2024-33602 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.8 glibc: netgroup cache assumes NSS callback uses in-buffer strings

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libcups2 CVE-2024-35235 中危 2.4.1op1-1ubuntu4.7 2.4.1op1-1ubuntu4.9 cups: Cupsd Listen arbitrary chmod 0140777

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35235

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-11 15:16 修改: 2024-06-14 03:15
libcups2 CVE-2024-47175 中危 2.4.1op1-1ubuntu4.7 2.4.1op1-1ubuntu4.11 cups: libppd: remote command injection via attacker controlled data in PPD file

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47175

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-09-26 22:15 修改: 2024-09-30 12:46
libcurl4 CVE-2023-46218 中危 7.81.0-1ubuntu1.14 7.81.0-1ubuntu1.15 curl: information disclosure by exploiting a mixed case flaw

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
libcurl4 CVE-2024-2398 中危 7.81.0-1ubuntu1.14 7.81.0-1ubuntu1.16 curl: HTTP/2 push headers memory-leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
libcurl4 CVE-2024-7264 中危 7.81.0-1ubuntu1.14 7.81.0-1ubuntu1.17 curl: libcurl: ASN.1 date parser overread

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-07-31 08:15 修改: 2024-10-30 20:35
libcurl4 CVE-2024-8096 中危 7.81.0-1ubuntu1.14 7.81.0-1ubuntu1.18 curl: OCSP stapling bypass with GnuTLS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8096

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-09-11 10:15 修改: 2024-09-11 16:26
libexpat1 CVE-2023-52425 中危 2.4.7-1ubuntu0.2 2.4.7-1ubuntu0.3 expat: parsing large tokens can trigger a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52425

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-04 20:15 修改: 2024-08-26 20:35
libexpat1 CVE-2024-28757 中危 2.4.7-1ubuntu0.2 2.4.7-1ubuntu0.3 expat: XML Entity Expansion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28757

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-03-10 05:15 修改: 2024-05-01 19:15
libexpat1 CVE-2024-45490 中危 2.4.7-1ubuntu0.2 2.4.7-1ubuntu0.4 libexpat: Negative Length Parsing Vulnerability in libexpat

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45490

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-30 03:15 修改: 2024-10-18 12:24
libexpat1 CVE-2024-45491 中危 2.4.7-1ubuntu0.2 2.4.7-1ubuntu0.4 libexpat: Integer Overflow or Wraparound

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45491

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
libexpat1 CVE-2024-45492 中危 2.4.7-1ubuntu0.2 2.4.7-1ubuntu0.4 libexpat: integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45492

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
libexpat1 CVE-2024-50602 中危 2.4.7-1ubuntu0.2 2.4.7-1ubuntu0.5 libexpat: expat: DoS via XML_ResumeParser

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50602

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-10-27 05:15 修改: 2024-10-30 18:35
libfreetype6 CVE-2025-23022 中危 2.11.1+dfsg-1ubuntu0.2 freetype: signed integer overflow in cf2_doFlex

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-23022

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2025-01-10 15:15 修改: 2025-01-16 21:12
libgcc-s1 CVE-2023-4039 中危 12.3.0-1ubuntu1~22.04 gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
libgdk-pixbuf-2.0-0 CVE-2022-48622 中危 2.42.8+dfsg-1ubuntu0.2 2.42.8+dfsg-1ubuntu0.3 gnome: heap memory corruption on gdk-pixbuf

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48622

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2024-01-26 09:15 修改: 2024-08-26 20:35
libgdk-pixbuf2.0-bin CVE-2022-48622 中危 2.42.8+dfsg-1ubuntu0.2 2.42.8+dfsg-1ubuntu0.3 gnome: heap memory corruption on gdk-pixbuf

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48622

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2024-01-26 09:15 修改: 2024-08-26 20:35
libgdk-pixbuf2.0-common CVE-2022-48622 中危 2.42.8+dfsg-1ubuntu0.2 2.42.8+dfsg-1ubuntu0.3 gnome: heap memory corruption on gdk-pixbuf

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48622

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2024-01-26 09:15 修改: 2024-08-26 20:35
libglib2.0-0 CVE-2024-34397 中危 2.72.4-0ubuntu2.2 2.72.4-0ubuntu2.3 glib2: Signal subscription vulnerabilities

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34397

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-05-07 18:15 修改: 2024-11-15 18:35
libglib2.0-0 CVE-2024-52533 中危 2.72.4-0ubuntu2.2 2.72.4-0ubuntu2.4 glib: buffer overflow in set_connect_msg()

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52533

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-11-11 23:15 修改: 2024-12-06 14:15
libgnutls30 CVE-2024-0553 中危 3.7.3-4ubuntu1.3 3.7.3-4ubuntu1.4 gnutls: incomplete fix for CVE-2023-5981

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0553

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-01-16 12:15 修改: 2024-09-16 13:15
libgnutls30 CVE-2024-0567 中危 3.7.3-4ubuntu1.3 3.7.3-4ubuntu1.4 gnutls: rejects certificate chain with distributed trust

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0567

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-01-16 14:15 修改: 2024-09-16 13:15
libgnutls30 CVE-2024-28834 中危 3.7.3-4ubuntu1.3 3.7.3-4ubuntu1.5 gnutls: vulnerable to Minerva side-channel information leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28834

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-03-21 14:15 修改: 2024-11-21 21:15
libgnutls30 CVE-2024-28835 中危 3.7.3-4ubuntu1.3 3.7.3-4ubuntu1.5 gnutls: potential crash during chain building/verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28835

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-03-21 06:15 修改: 2024-11-22 12:15
libgomp1 CVE-2023-4039 中危 12.3.0-1ubuntu1~22.04 gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
libgssapi-krb5-2 CVE-2024-26462 中危 1.19.2-2ubuntu0.3 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libgssapi-krb5-2 CVE-2024-37370 中危 1.19.2-2ubuntu0.3 1.19.2-2ubuntu0.4 krb5: GSS message token handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libgssapi-krb5-2 CVE-2024-37371 中危 1.19.2-2ubuntu0.3 1.19.2-2ubuntu0.4 krb5: GSS message token handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libgstreamer-plugins-base1.0-0 CVE-2024-4453 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.2 gstreamer: EXIF Metadata Parsing Integer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4453

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-05-22 20:15 修改: 2024-12-17 16:05
libgstreamer-plugins-base1.0-0 CVE-2024-47538 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.4 gstreamer1-plugins-base: GStreamer has a stack-buffer overflow in vorbis_handle_identification_packet

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47538

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-12 02:03 修改: 2024-12-19 22:15
libgstreamer-plugins-base1.0-0 CVE-2024-47541 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.4 gstreamer1-plugins-base: GStreamer has an out-of-bounds write in SSA subtitle parser

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47541

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-12 02:03 修改: 2024-12-13 19:21
libgstreamer-plugins-base1.0-0 CVE-2024-47542 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.4 gstreamer1-plugins-base: ID3v2 parser out-of-bounds read and NULL-pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47542

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-12 02:03 修改: 2024-12-13 19:03
libgstreamer-plugins-base1.0-0 CVE-2024-47600 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.4 gstreamer1-plugins-base: GStreamer has an OOB-read in format_channel_mask

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47600

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-12 02:03 修改: 2024-12-18 21:43
libgstreamer-plugins-base1.0-0 CVE-2024-47607 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.4 gstreamer1-plugins-base: stack-buffer overflow in gst_opus_dec_parse_header

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47607

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-12 02:03 修改: 2024-12-18 19:53
libgstreamer-plugins-base1.0-0 CVE-2024-47615 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.4 gstreamer1-plugins-base: out-of-bounds write in Ogg demuxer

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47615

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-12 02:03 修改: 2024-12-18 19:57
libgstreamer-plugins-base1.0-0 CVE-2024-47835 中危 1.20.1-1ubuntu0.1 1.20.1-1ubuntu0.4 gstreamer1-plugins-base: NULL-pointer dereference in LRC subtitle parser

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47835

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-12 02:03 修改: 2024-12-18 19:45
libgstreamer1.0-0 CVE-2024-47606 中危 1.20.3-0ubuntu1 1.20.3-0ubuntu1.1 gstreamer1-plugins-good: integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47606

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-12 02:03 修改: 2024-12-18 21:35
libgtk-3-0 CVE-2024-6655 中危 3.24.33-1ubuntu2 3.24.33-1ubuntu2.2 gtk3: gtk2: Library injection from CWD

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6655

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2024-07-16 15:15 修改: 2024-11-12 17:15
libgtk-3-bin CVE-2024-6655 中危 3.24.33-1ubuntu2 3.24.33-1ubuntu2.2 gtk3: gtk2: Library injection from CWD

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6655

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2024-07-16 15:15 修改: 2024-11-12 17:15
libgtk-3-common CVE-2024-6655 中危 3.24.33-1ubuntu2 3.24.33-1ubuntu2.2 gtk3: gtk2: Library injection from CWD

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6655

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2024-07-16 15:15 修改: 2024-11-12 17:15
libk5crypto3 CVE-2024-26462 中危 1.19.2-2ubuntu0.3 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libk5crypto3 CVE-2024-37370 中危 1.19.2-2ubuntu0.3 1.19.2-2ubuntu0.4 krb5: GSS message token handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libk5crypto3 CVE-2024-37371 中危 1.19.2-2ubuntu0.3 1.19.2-2ubuntu0.4 krb5: GSS message token handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libkrb5-3 CVE-2024-26462 中危 1.19.2-2ubuntu0.3 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5-3 CVE-2024-37370 中危 1.19.2-2ubuntu0.3 1.19.2-2ubuntu0.4 krb5: GSS message token handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libkrb5-3 CVE-2024-37371 中危 1.19.2-2ubuntu0.3 1.19.2-2ubuntu0.4 krb5: GSS message token handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libkrb5support0 CVE-2024-26462 中危 1.19.2-2ubuntu0.3 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5support0 CVE-2024-37370 中危 1.19.2-2ubuntu0.3 1.19.2-2ubuntu0.4 krb5: GSS message token handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libkrb5support0 CVE-2024-37371 中危 1.19.2-2ubuntu0.3 1.19.2-2ubuntu0.4 krb5: GSS message token handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libmount1 CVE-2024-28085 中危 2.37.2-4ubuntu3 2.37.2-4ubuntu3.3 util-linux: CVE-2024-28085: wall: escape sequence injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
bash CVE-2022-3715 中危 5.1-6ubuntu1 5.1-6ubuntu1.1 bash: a heap-buffer-overflow in valid_parameter_transform

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3715

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-01-05 15:15 修改: 2023-02-24 18:38
libnghttp2-14 CVE-2024-28182 中危 1.43.0-1build3 1.43.0-1ubuntu0.2 nghttp2: CONTINUATION frames DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28182

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-04-04 15:15 修改: 2024-05-01 18:15
libnss3 CVE-2023-5388 中危 2:3.68.2-0ubuntu1.2 2:3.98-0ubuntu0.22.04.1 nss: timing attack against RSA decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5388

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-03-19 12:15 修改: 2024-11-14 22:35
libnss3 CVE-2023-6135 中危 2:3.68.2-0ubuntu1.2 2:3.98-0ubuntu0.22.04.1 nss: vulnerable to Minerva side-channel information leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6135

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-12-19 14:15 修改: 2024-01-07 11:15
liborc-0.4-0 CVE-2024-40897 中危 1:0.4.32-2 1:0.4.32-2ubuntu0.1 orc: Stack-based buffer overflow vulnerability in ORC

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-40897

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-07-26 06:15 修改: 2024-08-27 13:52
libpam-modules CVE-2024-10041 中危 1.4.0-11ubuntu2.3 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules CVE-2024-22365 中危 1.4.0-11ubuntu2.3 1.4.0-11ubuntu2.4 pam: allowing unprivileged user to block another user namespace

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libpam-modules-bin CVE-2024-10041 中危 1.4.0-11ubuntu2.3 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules-bin CVE-2024-22365 中危 1.4.0-11ubuntu2.3 1.4.0-11ubuntu2.4 pam: allowing unprivileged user to block another user namespace

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libpam-runtime CVE-2024-10041 中危 1.4.0-11ubuntu2.3 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-runtime CVE-2024-22365 中危 1.4.0-11ubuntu2.3 1.4.0-11ubuntu2.4 pam: allowing unprivileged user to block another user namespace

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libpam0g CVE-2024-10041 中危 1.4.0-11ubuntu2.3 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam0g CVE-2024-22365 中危 1.4.0-11ubuntu2.3 1.4.0-11ubuntu2.4 pam: allowing unprivileged user to block another user namespace

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libperl5.34 CVE-2023-47038 中危 5.34.0-3ubuntu1.2 5.34.0-3ubuntu1.3 perl: Write past buffer end via illegal user-defined Unicode property

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
libpixman-1-0 CVE-2023-37769 中危 0.40.0-1ubuntu0.22.04.1 stress-test master commit e4c878 was discovered to contain a FPE vulne ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37769

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2023-07-17 20:15 修改: 2023-07-28 13:22
libpython3.10-minimal CVE-2023-27043 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
libpython3.10-minimal CVE-2023-40217 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.3 python: TLS handshake bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
libpython3.10-minimal CVE-2023-6597 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.4 python: Path traversal on tempfile.TemporaryDirectory

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
libpython3.10-minimal CVE-2024-0397 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.5 cpython: python: Memory race condition in ssl.SSLContext certificate store methods

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
libpython3.10-minimal CVE-2024-0450 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.4 python: The zipfile module is vulnerable to zip-bombs leading to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
libpython3.10-minimal CVE-2024-11168 中危 3.10.12-1~22.04.2 python: Improper validation of IPv6 and IPvFuture addresses

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11168

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-11-12 22:15 修改: 2025-01-06 18:15
libpython3.10-minimal CVE-2024-6232 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 python: cpython: tarfile: ReDos via excessive backtracking while parsing header values

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
libpython3.10-minimal CVE-2024-6923 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-01 14:15 修改: 2025-01-11 15:15
libpython3.10-minimal CVE-2024-8088 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-22 19:15 修改: 2024-09-04 23:15
libpython3.10-minimal CVE-2024-9287 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.7 python: Virtual environment (venv) activation scripts don't quote paths

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-10-22 17:15 修改: 2024-11-04 18:15
libpython3.10-stdlib CVE-2023-27043 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
libpython3.10-stdlib CVE-2023-40217 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.3 python: TLS handshake bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
libpython3.10-stdlib CVE-2023-6597 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.4 python: Path traversal on tempfile.TemporaryDirectory

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
libpython3.10-stdlib CVE-2024-0397 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.5 cpython: python: Memory race condition in ssl.SSLContext certificate store methods

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
libpython3.10-stdlib CVE-2024-0450 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.4 python: The zipfile module is vulnerable to zip-bombs leading to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
libpython3.10-stdlib CVE-2024-11168 中危 3.10.12-1~22.04.2 python: Improper validation of IPv6 and IPvFuture addresses

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11168

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-11-12 22:15 修改: 2025-01-06 18:15
libpython3.10-stdlib CVE-2024-6232 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 python: cpython: tarfile: ReDos via excessive backtracking while parsing header values

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
libpython3.10-stdlib CVE-2024-6923 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-01 14:15 修改: 2025-01-11 15:15
libpython3.10-stdlib CVE-2024-8088 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-22 19:15 修改: 2024-09-04 23:15
libpython3.10-stdlib CVE-2024-9287 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.7 python: Virtual environment (venv) activation scripts don't quote paths

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-10-22 17:15 修改: 2024-11-04 18:15
libsmartcols1 CVE-2024-28085 中危 2.37.2-4ubuntu3 2.37.2-4ubuntu3.3 util-linux: CVE-2024-28085: wall: escape sequence injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
libsndfile1 CVE-2022-33064 中危 1.0.31-2ubuntu0.1 libsndfile: off-by-one error in function wav_read_header in src/wav.c leads to code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-33064

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2023-07-18 14:15 修改: 2023-07-27 15:14
libsoup2.4-1 CVE-2024-52530 中危 2.74.2-3 2.74.2-3ubuntu0.1 libsoup: HTTP request smuggling via stripping null bytes from the ends of header names

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52530

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-11-11 20:15 修改: 2024-11-12 19:35
libsoup2.4-1 CVE-2024-52531 中危 2.74.2-3 2.74.2-3ubuntu0.1 libsoup: buffer overflow via UTF-8 conversion in soup_header_parse_param_list_strict

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52531

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-11-11 20:15 修改: 2024-11-12 19:35
libsoup2.4-1 CVE-2024-52532 中危 2.74.2-3 2.74.2-3ubuntu0.1 libsoup: infinite loop while reading websocket data

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52532

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-11-11 20:15 修改: 2024-11-12 19:35
libsoup2.4-common CVE-2024-52530 中危 2.74.2-3 2.74.2-3ubuntu0.1 libsoup: HTTP request smuggling via stripping null bytes from the ends of header names

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52530

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-11-11 20:15 修改: 2024-11-12 19:35
libsoup2.4-common CVE-2024-52531 中危 2.74.2-3 2.74.2-3ubuntu0.1 libsoup: buffer overflow via UTF-8 conversion in soup_header_parse_param_list_strict

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52531

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-11-11 20:15 修改: 2024-11-12 19:35
libsoup2.4-common CVE-2024-52532 中危 2.74.2-3 2.74.2-3ubuntu0.1 libsoup: infinite loop while reading websocket data

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52532

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-11-11 20:15 修改: 2024-11-12 19:35
libsqlite3-0 CVE-2023-7104 中危 3.37.2-2ubuntu0.1 3.37.2-2ubuntu0.3 sqlite: heap-buffer-overflow at sessionfuzz

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7104

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-12-29 10:15 修改: 2024-05-17 02:34
libssh-4 CVE-2023-48795 中危 0.9.6-2ubuntu0.22.04.1 0.9.6-2ubuntu0.22.04.2 ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-12-18 16:15 修改: 2024-12-02 14:54
libssh-4 CVE-2023-6004 中危 0.9.6-2ubuntu0.22.04.1 0.9.6-2ubuntu0.22.04.3 libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6004

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-01-03 17:15 修改: 2024-09-16 18:15
libssh-4 CVE-2023-6918 中危 0.9.6-2ubuntu0.22.04.1 0.9.6-2ubuntu0.22.04.3 libssh: Missing checks for return values for digests

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6918

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-12-19 00:15 修改: 2024-09-16 18:15
libssl3 CVE-2022-40735 中危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.16

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40735

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2022-11-14 23:15 修改: 2024-04-23 07:15
libssl3 CVE-2024-6119 中危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.18 openssl: Possible denial of service in X.509 name checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
libstdc++6 CVE-2023-4039 中危 12.3.0-1ubuntu1~22.04 gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
libtheora0 CVE-2024-56431 中危 1.1.1+dfsg.1-15ubuntu4 libtheora: incorrect bitwise shift in huffdec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56431

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-12-25 17:15 修改: 2024-12-31 19:15
libtiff5 CVE-2022-40090 中危 4.3.0-6ubuntu0.6 4.3.0-6ubuntu0.7 libtiff: infinite loop via a crafted TIFF file

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40090

镜像层: sha256:09c3c66618d08f6fd7feae237d78d5ba4215098cd8dbf1c30be1ef5f4163a222

发布日期: 2023-08-22 19:16 修改: 2023-08-26 02:13
libtiff5 CVE-2023-52356 中危 4.3.0-6ubuntu0.6 4.3.0-6ubuntu0.8 libtiff: Segment fault in libtiff in TIFFReadRGBATileExt() leading to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52356

镜像层: sha256:09c3c66618d08f6fd7feae237d78d5ba4215098cd8dbf1c30be1ef5f4163a222

发布日期: 2024-01-25 20:15 修改: 2024-09-16 20:15
libtiff5 CVE-2024-7006 中危 4.3.0-6ubuntu0.6 4.3.0-6ubuntu0.10 libtiff: NULL pointer dereference in tif_dirinfo.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7006

镜像层: sha256:09c3c66618d08f6fd7feae237d78d5ba4215098cd8dbf1c30be1ef5f4163a222

发布日期: 2024-08-12 13:38 修改: 2024-11-06 10:15
libuuid1 CVE-2024-28085 中危 2.37.2-4ubuntu3 2.37.2-4ubuntu3.3 util-linux: CVE-2024-28085: wall: escape sequence injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
libxml2 CVE-2024-25062 中危 2.9.13+dfsg-1ubuntu0.3 2.9.13+dfsg-1ubuntu0.4 libxml2: use-after-free in XMLReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25062

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-02-04 16:15 修改: 2024-02-13 00:40
locales CVE-2023-5156 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.5 glibc: DoS due to memory leak in getaddrinfo.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5156

镜像层: sha256:7056235c4846e7f14c9237018486c12965133fa957ffa3a92d97548f628b71f9

发布日期: 2023-09-25 16:15 修改: 2024-09-14 03:15
locales CVE-2024-2961 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.7 glibc: Out of bounds write in iconv may lead to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961

镜像层: sha256:7056235c4846e7f14c9237018486c12965133fa957ffa3a92d97548f628b71f9

发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
locales CVE-2024-33599 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.8 glibc: stack-based buffer overflow in netgroup cache

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599

镜像层: sha256:7056235c4846e7f14c9237018486c12965133fa957ffa3a92d97548f628b71f9

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
locales CVE-2024-33600 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.8 glibc: null pointer dereferences after failed netgroup cache insertion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600

镜像层: sha256:7056235c4846e7f14c9237018486c12965133fa957ffa3a92d97548f628b71f9

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
locales CVE-2024-33601 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.8 glibc: netgroup cache may terminate daemon on memory allocation failure

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601

镜像层: sha256:7056235c4846e7f14c9237018486c12965133fa957ffa3a92d97548f628b71f9

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
locales CVE-2024-33602 中危 2.35-0ubuntu3.4 2.35-0ubuntu3.8 glibc: netgroup cache assumes NSS callback uses in-buffer strings

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602

镜像层: sha256:7056235c4846e7f14c9237018486c12965133fa957ffa3a92d97548f628b71f9

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
login CVE-2024-56433 中危 1:4.8.1-2ubuntu2.1 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
mount CVE-2024-28085 中危 2.37.2-4ubuntu3 2.37.2-4ubuntu3.3 util-linux: CVE-2024-28085: wall: escape sequence injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
openjdk-11-jre-headless CVE-2023-22025 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.21+9-0ubuntu1~22.04 OpenJDK: memory corruption issue on x86_64 with AVX-512 (8317121)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22025

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-10-17 22:15 修改: 2024-02-01 02:11
openjdk-11-jre-headless CVE-2023-22081 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.21+9-0ubuntu1~22.04 OpenJDK: certificate path validation issue during client authentication (8309966)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22081

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-10-17 22:15 修改: 2024-02-16 15:55
openjdk-11-jre-headless CVE-2024-20918 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.22+7-0ubuntu2~22.04.1 OpenJDK: array out-of-bounds access due to missing range check in C1 compiler (8314468)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20918

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-01-16 22:15 修改: 2024-02-15 03:18
openjdk-11-jre-headless CVE-2024-20919 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.22+7-0ubuntu2~22.04.1 OpenJDK: JVM class file verifier flaw allows unverified bytecode execution (8314295)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20919

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-17 02:15 修改: 2024-12-09 16:42
openjdk-11-jre-headless CVE-2024-20921 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.22+7-0ubuntu2~22.04.1 OpenJDK: range check loop optimization issue (8314307)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20921

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-17 02:15 修改: 2024-11-05 16:35
openjdk-11-jre-headless CVE-2024-20926 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.22+7-0ubuntu2~22.04.1 OpenJDK: arbitrary Java code execution in Nashorn (8314284)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20926

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-01-16 22:15 修改: 2024-02-02 17:35
openjdk-11-jre-headless CVE-2024-20945 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.22+7-0ubuntu2~22.04.1 OpenJDK: logging of digital signature private keys (8316976)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20945

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-17 02:15 修改: 2024-11-12 19:35
openjdk-11-jre-headless CVE-2024-20952 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.22+7-0ubuntu2~22.04.1 OpenJDK: RSA padding issue and timing side-channel attack against TLS (8317547)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20952

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-01-16 22:15 修改: 2024-08-30 16:35
openjdk-11-jre-headless CVE-2024-21011 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.23+9-1ubuntu1~22.04.1 OpenJDK: long Exception message leading to crash (8319851)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21011

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-04-16 22:15 修改: 2024-11-21 21:15
openjdk-11-jre-headless CVE-2024-21012 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.23+9-1ubuntu1~22.04.1 OpenJDK: HTTP/2 client improper reverse DNS lookup (8315708)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21012

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-04-16 22:15 修改: 2024-11-13 18:35
openjdk-11-jre-headless CVE-2024-21068 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.23+9-1ubuntu1~22.04.1 OpenJDK: integer overflow in C1 compiler address generation (8322122)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21068

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-04-16 22:15 修改: 2024-12-06 19:22
openjdk-11-jre-headless CVE-2024-21085 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.23+9-1ubuntu1~22.04.1 OpenJDK: Pack200 excessive memory allocation (8322114)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21085

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15
openjdk-11-jre-headless CVE-2024-21094 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.23+9-1ubuntu1~22.04.1 OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21094

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-04-16 22:15 修改: 2024-07-03 01:46
openjdk-11-jre-headless CVE-2024-21131 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.24+8-1ubuntu3~22.04 OpenJDK: potential UTF8 size overflow (8314794)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21131

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-07-16 23:15 修改: 2024-12-05 22:02
openjdk-11-jre-headless CVE-2024-21138 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.24+8-1ubuntu3~22.04 OpenJDK: Excessive symbol length can lead to infinite loop (8319859)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21138

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-07-16 23:15 修改: 2024-12-05 22:05
openjdk-11-jre-headless CVE-2024-21140 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.24+8-1ubuntu3~22.04 OpenJDK: Range Check Elimination (RCE) pre-loop limit overflow (8320548)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21140

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-07-16 23:15 修改: 2024-08-01 13:46
openjdk-11-jre-headless CVE-2024-21144 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.24+8-1ubuntu3~22.04 OpenJDK: Pack200 increase loading time due to improper header validation (8322106)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21144

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-07-16 23:15 修改: 2024-12-16 20:13
openjdk-11-jre-headless CVE-2024-21145 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.24+8-1ubuntu3~22.04 OpenJDK: Out-of-bounds access in 2D image handling (8324559)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21145

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-07-16 23:15 修改: 2024-12-16 20:13
openjdk-11-jre-headless CVE-2024-21147 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.24+8-1ubuntu3~22.04 OpenJDK: RangeCheckElimination array index overflow (8323231)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21147

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-07-16 23:15 修改: 2024-08-13 00:49
openjdk-11-jre-headless CVE-2024-21235 中危 11.0.20.1+1-0ubuntu1~22.04 11.0.25+9-1ubuntu1~22.04 JDK: Integer conversion error leads to incorrect range check (8332644)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21235

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-10-15 20:15 修改: 2024-10-18 18:30
openssl CVE-2022-40735 中危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.16

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40735

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2022-11-14 23:15 修改: 2024-04-23 07:15
openssl CVE-2024-6119 中危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.18 openssl: Possible denial of service in X.509 name checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
passwd CVE-2024-56433 中危 1:4.8.1-2ubuntu2.1 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
perl CVE-2023-47038 中危 5.34.0-3ubuntu1.2 5.34.0-3ubuntu1.3 perl: Write past buffer end via illegal user-defined Unicode property

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-base CVE-2023-47038 中危 5.34.0-3ubuntu1.2 5.34.0-3ubuntu1.3 perl: Write past buffer end via illegal user-defined Unicode property

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-modules-5.34 CVE-2023-47038 中危 5.34.0-3ubuntu1.2 5.34.0-3ubuntu1.3 perl: Write past buffer end via illegal user-defined Unicode property

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
python3-pkg-resources CVE-2024-6345 中危 59.6.0-1.2ubuntu0.22.04.1 59.6.0-1.2ubuntu0.22.04.2 pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6345

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-07-15 01:15 修改: 2024-07-15 13:00
python3.10 CVE-2023-27043 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
python3.10 CVE-2023-40217 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.3 python: TLS handshake bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
python3.10 CVE-2023-6597 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.4 python: Path traversal on tempfile.TemporaryDirectory

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python3.10 CVE-2024-0397 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.5 cpython: python: Memory race condition in ssl.SSLContext certificate store methods

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
python3.10 CVE-2024-0450 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.4 python: The zipfile module is vulnerable to zip-bombs leading to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python3.10 CVE-2024-11168 中危 3.10.12-1~22.04.2 python: Improper validation of IPv6 and IPvFuture addresses

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11168

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-11-12 22:15 修改: 2025-01-06 18:15
python3.10 CVE-2024-6232 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 python: cpython: tarfile: ReDos via excessive backtracking while parsing header values

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
python3.10 CVE-2024-6923 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-01 14:15 修改: 2025-01-11 15:15
python3.10 CVE-2024-8088 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-22 19:15 修改: 2024-09-04 23:15
python3.10 CVE-2024-9287 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.7 python: Virtual environment (venv) activation scripts don't quote paths

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-10-22 17:15 修改: 2024-11-04 18:15
python3.10-minimal CVE-2023-27043 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
python3.10-minimal CVE-2023-40217 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.3 python: TLS handshake bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
python3.10-minimal CVE-2023-6597 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.4 python: Path traversal on tempfile.TemporaryDirectory

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python3.10-minimal CVE-2024-0397 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.5 cpython: python: Memory race condition in ssl.SSLContext certificate store methods

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
python3.10-minimal CVE-2024-0450 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.4 python: The zipfile module is vulnerable to zip-bombs leading to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python3.10-minimal CVE-2024-11168 中危 3.10.12-1~22.04.2 python: Improper validation of IPv6 and IPvFuture addresses

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11168

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-11-12 22:15 修改: 2025-01-06 18:15
python3.10-minimal CVE-2024-6232 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 python: cpython: tarfile: ReDos via excessive backtracking while parsing header values

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
python3.10-minimal CVE-2024-6923 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-01 14:15 修改: 2025-01-11 15:15
python3.10-minimal CVE-2024-8088 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-22 19:15 修改: 2024-09-04 23:15
python3.10-minimal CVE-2024-9287 中危 3.10.12-1~22.04.2 3.10.12-1~22.04.7 python: Virtual environment (venv) activation scripts don't quote paths

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-10-22 17:15 修改: 2024-11-04 18:15
tar CVE-2023-39804 中危 1.34+dfsg-1ubuntu0.1.22.04.1 1.34+dfsg-1ubuntu0.1.22.04.2 tar: Incorrectly handled extension attributes in PAX archives can lead to a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39804

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-03-27 04:15 修改: 2024-11-12 19:35
util-linux CVE-2024-28085 中危 2.37.2-4ubuntu3 2.37.2-4ubuntu3.3 util-linux: CVE-2024-28085: wall: escape sequence injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
wget CVE-2021-31879 中危 1.21.2-2ubuntu1 wget: authorization header disclosure on redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31879

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2021-04-29 05:15 修改: 2022-05-13 20:52
wget CVE-2024-38428 中危 1.21.2-2ubuntu1 1.21.2-2ubuntu1.1 wget: Misinterpretation of input may lead to improper behavior

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-38428

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-16 03:15 修改: 2024-10-28 21:35
x11vnc CVE-2019-15690 中危 0.9.16-8 libvncserver: HandleCursorShape() integer overflow resulting in heap-based buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-15690

镜像层: sha256:953e07c29d03c3032840719ce076917ed49238bf48d54ec0b7aacc6c8122b731

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
xserver-common CVE-2023-6377 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.5 xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6377

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2023-12-13 07:15 修改: 2024-09-16 16:15
xserver-common CVE-2023-6478 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.5 xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6478

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2023-12-13 07:15 修改: 2024-09-16 16:15
xserver-common CVE-2023-6816 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.7 xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6816

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-01-18 05:15 修改: 2024-09-16 16:15
xserver-common CVE-2024-0229 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.7 xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0229

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-02-09 07:16 修改: 2024-11-23 03:15
xserver-common CVE-2024-0408 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.7 xorg-x11-server: SELinux unlabeled GLX PBuffer

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0408

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-01-18 16:15 修改: 2024-09-16 16:15
xserver-common CVE-2024-0409 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.7 xorg-x11-server: SELinux context corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0409

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-01-18 16:15 修改: 2024-09-16 16:15
xserver-common CVE-2024-21885 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.7 xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21885

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-02-28 13:15 修改: 2024-09-16 16:15
xserver-common CVE-2024-21886 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.7 xorg-x11-server: heap buffer overflow in DisableDevice

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21886

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-02-28 13:15 修改: 2024-05-22 17:16
xserver-common CVE-2024-31080 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.9 xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31080

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-04-04 14:15 修改: 2024-11-12 15:15
xserver-common CVE-2024-31081 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.9 xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31081

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-04-04 14:15 修改: 2024-11-12 15:15
xserver-common CVE-2024-31082 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.9 xorg-x11-server: Heap buffer overread/data leakage in ProcAppleDRICreatePixmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31082

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-04-04 14:15 修改: 2024-11-13 13:15
xserver-common CVE-2024-31083 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.10 xorg-x11-server: Use-after-free in ProcRenderAddGlyphs

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31083

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-04-05 12:15 修改: 2024-11-12 15:15
xserver-common CVE-2024-9632 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.12 xorg-x11-server: tigervnc: heap-based buffer overflow privilege escalation vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9632

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-10-30 08:15 修改: 2024-11-21 19:15
xvfb CVE-2023-6377 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.5 xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6377

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2023-12-13 07:15 修改: 2024-09-16 16:15
xvfb CVE-2023-6478 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.5 xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6478

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2023-12-13 07:15 修改: 2024-09-16 16:15
xvfb CVE-2023-6816 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.7 xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6816

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-01-18 05:15 修改: 2024-09-16 16:15
xvfb CVE-2024-0229 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.7 xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0229

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-02-09 07:16 修改: 2024-11-23 03:15
xvfb CVE-2024-0408 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.7 xorg-x11-server: SELinux unlabeled GLX PBuffer

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0408

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-01-18 16:15 修改: 2024-09-16 16:15
xvfb CVE-2024-0409 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.7 xorg-x11-server: SELinux context corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0409

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-01-18 16:15 修改: 2024-09-16 16:15
xvfb CVE-2024-21885 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.7 xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21885

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-02-28 13:15 修改: 2024-09-16 16:15
xvfb CVE-2024-21886 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.7 xorg-x11-server: heap buffer overflow in DisableDevice

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21886

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-02-28 13:15 修改: 2024-05-22 17:16
xvfb CVE-2024-31080 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.9 xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31080

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-04-04 14:15 修改: 2024-11-12 15:15
xvfb CVE-2024-31081 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.9 xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31081

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-04-04 14:15 修改: 2024-11-12 15:15
xvfb CVE-2024-31082 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.9 xorg-x11-server: Heap buffer overread/data leakage in ProcAppleDRICreatePixmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31082

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-04-04 14:15 修改: 2024-11-13 13:15
xvfb CVE-2024-31083 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.10 xorg-x11-server: Use-after-free in ProcRenderAddGlyphs

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31083

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-04-05 12:15 修改: 2024-11-12 15:15
xvfb CVE-2024-9632 中危 2:21.1.4-2ubuntu1.7~22.04.2 2:21.1.4-2ubuntu1.7~22.04.12 xorg-x11-server: tigervnc: heap-based buffer overflow privilege escalation vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9632

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-10-30 08:15 修改: 2024-11-21 19:15
libtiff5 CVE-2023-6277 低危 4.3.0-6ubuntu0.6 4.3.0-6ubuntu0.8 libtiff: Out-of-memory in TIFFOpen via a craft file

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6277

镜像层: sha256:09c3c66618d08f6fd7feae237d78d5ba4215098cd8dbf1c30be1ef5f4163a222

发布日期: 2023-11-24 19:15 修改: 2024-09-17 01:15
libtiff5 CVE-2024-6716 低危 4.3.0-6ubuntu0.6

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6716

镜像层: sha256:09c3c66618d08f6fd7feae237d78d5ba4215098cd8dbf1c30be1ef5f4163a222

发布日期: 2024-07-15 15:15 修改: 2024-09-04 14:15
libtinfo6 CVE-2023-45918 低危 6.3-2ubuntu0.1 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-02-16 22:15 修改: 2024-11-21 21:15
libtinfo6 CVE-2023-50495 低危 6.3-2ubuntu0.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libudev1 CVE-2023-7008 低危 249.11-0ubuntu3.11 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
gnupg-l10n CVE-2022-3219 低危 2.2.27-3ubuntu2.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libncurses6 CVE-2023-45918 低危 6.3-2ubuntu0.1 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-02-16 22:15 修改: 2024-11-21 21:15
libzstd1 CVE-2022-4899 低危 1.4.8+dfsg-3build1 zstd: mysql: buffer overrun in util.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4899

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-03-31 20:15 修改: 2023-11-07 03:59
libncurses6 CVE-2023-50495 低危 6.3-2ubuntu0.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libncursesw6 CVE-2023-45918 低危 6.3-2ubuntu0.1 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-02-16 22:15 修改: 2024-11-21 21:15
libncursesw6 CVE-2023-50495 低危 6.3-2ubuntu0.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
gnupg-utils CVE-2022-3219 低危 2.2.27-3ubuntu2.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gnupg2 CVE-2022-3219 低危 2.2.27-3ubuntu2.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libnss-systemd CVE-2023-7008 低危 249.11-0ubuntu3.11 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
locales CVE-2016-20013 低危 2.35-0ubuntu3.4

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013

镜像层: sha256:7056235c4846e7f14c9237018486c12965133fa957ffa3a92d97548f628b71f9

发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
locales CVE-2023-4806 低危 2.35-0ubuntu3.4 2.35-0ubuntu3.5 glibc: potential use-after-free in getaddrinfo()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806

镜像层: sha256:7056235c4846e7f14c9237018486c12965133fa957ffa3a92d97548f628b71f9

发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
locales CVE-2023-4813 低危 2.35-0ubuntu3.4 2.35-0ubuntu3.5 glibc: potential use-after-free in gaih_inet()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813

镜像层: sha256:7056235c4846e7f14c9237018486c12965133fa957ffa3a92d97548f628b71f9

发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
gpg CVE-2022-3219 低危 2.2.27-3ubuntu2.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
login CVE-2023-29383 低危 1:4.8.1-2ubuntu2.1 shadow: Improper input validation in shadow-utils package utility chfn

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
login CVE-2023-4641 低危 1:4.8.1-2ubuntu2.1 1:4.8.1-2ubuntu2.2 shadow-utils: possible password leak during passwd(1) change

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
gpg-agent CVE-2022-3219 低危 2.2.27-3ubuntu2.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
ncurses-base CVE-2023-45918 低危 6.3-2ubuntu0.1 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-02-16 22:15 修改: 2024-11-21 21:15
ncurses-base CVE-2023-50495 低危 6.3-2ubuntu0.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
ncurses-bin CVE-2023-45918 低危 6.3-2ubuntu0.1 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-02-16 22:15 修改: 2024-11-21 21:15
ncurses-bin CVE-2023-50495 低危 6.3-2ubuntu0.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libgcc-s1 CVE-2022-27943 低危 12.3.0-1ubuntu1~22.04 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
libgcrypt20 CVE-2024-2236 低危 1.9.4-3ubuntu3 libgcrypt: vulnerable to Marvin Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2024-03-06 22:15 修改: 2024-11-12 18:15
gpg-wks-client CVE-2022-3219 低危 2.2.27-3ubuntu2.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gpg-wks-server CVE-2022-3219 低危 2.2.27-3ubuntu2.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gpgconf CVE-2022-3219 低危 2.2.27-3ubuntu2.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libgif7 CVE-2021-40633 低危 5.1.9-2build2 5.1.9-2ubuntu0.1 A memory leak (out-of-memory) in gif2rgb in util/gif2rgb.c in giflib 5 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-40633

镜像层: sha256:09c3c66618d08f6fd7feae237d78d5ba4215098cd8dbf1c30be1ef5f4163a222

发布日期: 2022-06-14 11:15 修改: 2022-06-23 14:20
libgif7 CVE-2022-28506 低危 5.1.9-2build2 5.1.9-2ubuntu0.1 giflib: buffer overflow in function DumpScreen2RGB()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28506

镜像层: sha256:09c3c66618d08f6fd7feae237d78d5ba4215098cd8dbf1c30be1ef5f4163a222

发布日期: 2022-04-25 13:15 修改: 2023-11-07 03:45
libpam-systemd CVE-2023-7008 低危 249.11-0ubuntu3.11 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
libgif7 CVE-2023-48161 低危 5.1.9-2build2 giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48161

镜像层: sha256:09c3c66618d08f6fd7feae237d78d5ba4215098cd8dbf1c30be1ef5f4163a222

发布日期: 2023-11-22 06:15 修改: 2023-11-29 18:48
gpgsm CVE-2022-3219 低危 2.2.27-3ubuntu2.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libpcre2-8-0 CVE-2022-41409 低危 10.39-3ubuntu0.1 pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-07-18 14:15 修改: 2023-07-27 03:46
libpcre3 CVE-2017-11164 低危 2:8.39-13ubuntu0.22.04.1 pcre: OP_KETRMAX feature in the match function in pcre_exec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11164

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2017-07-11 03:29 修改: 2023-11-07 02:38
libc-bin CVE-2016-20013 低危 2.35-0ubuntu3.4

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
libperl5.34 CVE-2022-48522 低危 5.34.0-3ubuntu1.2 5.34.0-3ubuntu1.3 perl: stack-based crash in S_find_uninit_var()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48522

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2023-08-22 19:16 修改: 2023-09-15 14:15
libc-bin CVE-2023-4806 低危 2.35-0ubuntu3.4 2.35-0ubuntu3.5 glibc: potential use-after-free in getaddrinfo()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
libpolkit-agent-1-0 CVE-2016-2568 低危 0.105-33 polkit: Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2568

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2017-02-13 18:59 修改: 2022-04-18 17:59
libpolkit-gobject-1-0 CVE-2016-2568 低危 0.105-33 polkit: Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2568

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2017-02-13 18:59 修改: 2022-04-18 17:59
libc-bin CVE-2023-4813 低危 2.35-0ubuntu3.4 2.35-0ubuntu3.5 glibc: potential use-after-free in gaih_inet()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
gpgv CVE-2022-3219 低危 2.2.27-3ubuntu2.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
cpp-11 CVE-2021-46195 低危 11.4.0-1ubuntu1~22.04 gcc: uncontrolled recursion in libiberty/rust-demangle.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46195

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2022-01-14 20:15 修改: 2022-01-22 01:38
openjdk-11-jre-headless CVE-2024-21208 低危 11.0.20.1+1-0ubuntu1~22.04 11.0.25+9-1ubuntu1~22.04 JDK: HTTP client improper handling of maxHeaderSize (8328286)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21208

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-10-15 20:15 修改: 2024-10-31 13:35
openjdk-11-jre-headless CVE-2024-21210 低危 11.0.20.1+1-0ubuntu1~22.04 11.0.25+9-1ubuntu1~22.04 JDK: Array indexing integer overflow (8328544)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21210

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-10-15 20:15 修改: 2024-10-31 13:35
openjdk-11-jre-headless CVE-2024-21217 低危 11.0.20.1+1-0ubuntu1~22.04 11.0.25+9-1ubuntu1~22.04 JDK: Unbounded allocation leads to out-of-memory error (8331446)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21217

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-10-15 20:15 修改: 2024-10-18 18:29
cpp-11 CVE-2022-27943 低危 11.4.0-1ubuntu1~22.04 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
libgomp1 CVE-2022-27943 低危 12.3.0-1ubuntu1~22.04 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
openssl CVE-2023-5678 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.14 openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
openssl CVE-2023-6129 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.14 openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6129

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-01-09 17:15 修改: 2024-10-14 15:15
openssl CVE-2023-6237 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.14 openssl: Excessive time spent checking invalid RSA public keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6237

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-04-25 07:15 修改: 2024-11-01 15:35
openssl CVE-2024-0727 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.14 openssl: denial of service via null dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-01-26 09:15 修改: 2024-10-14 15:15
openssl CVE-2024-2511 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.17 openssl: Unbounded memory growth with session handling in TLSv1.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-04-08 14:15 修改: 2024-10-14 15:15
openssl CVE-2024-41996 低危 3.0.2-0ubuntu1.12 openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
openssl CVE-2024-4603 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.17 openssl: Excessive time spent checking DSA keys and parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4603

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-05-16 16:15 修改: 2024-10-14 15:15
openssl CVE-2024-4741 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.17 openssl: Use After Free with SSL_free_buffers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-11-13 11:15 修改: 2024-11-13 17:01
openssl CVE-2024-5535 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.17 openssl: SSL_select_next_proto buffer overread

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
curl CVE-2024-11053 低危 7.81.0-1ubuntu1.14 7.81.0-1ubuntu1.20 curl: curl netrc password leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-12-11 08:15 修改: 2024-12-15 17:15
passwd CVE-2023-29383 低危 1:4.8.1-2ubuntu2.1 shadow: Improper input validation in shadow-utils package utility chfn

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
passwd CVE-2023-4641 低危 1:4.8.1-2ubuntu2.1 1:4.8.1-2ubuntu2.2 shadow-utils: possible password leak during passwd(1) change

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
curl CVE-2024-9681 低危 7.81.0-1ubuntu1.14 7.81.0-1ubuntu1.19 curl: HSTS subdomain overwrites parent cache entry

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-11-06 08:15 修改: 2024-12-13 14:15
perl CVE-2022-48522 低危 5.34.0-3ubuntu1.2 5.34.0-3ubuntu1.3 perl: stack-based crash in S_find_uninit_var()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48522

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2023-08-22 19:16 修改: 2023-09-15 14:15
dbus CVE-2023-34969 低危 1.12.20-2ubuntu4.1 dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36
perl-base CVE-2022-48522 低危 5.34.0-3ubuntu1.2 5.34.0-3ubuntu1.3 perl: stack-based crash in S_find_uninit_var()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48522

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-08-22 19:16 修改: 2023-09-15 14:15
libgssapi-krb5-2 CVE-2024-26458 低危 1.19.2-2ubuntu0.3 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
perl-modules-5.34 CVE-2022-48522 低危 5.34.0-3ubuntu1.2 5.34.0-3ubuntu1.3 perl: stack-based crash in S_find_uninit_var()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48522

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2023-08-22 19:16 修改: 2023-09-15 14:15
pkexec CVE-2016-2568 低危 0.105-33 polkit: Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2568

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2017-02-13 18:59 修改: 2022-04-18 17:59
policykit-1 CVE-2016-2568 低危 0.105-33 polkit: Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2568

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2017-02-13 18:59 修改: 2022-04-18 17:59
polkitd CVE-2016-2568 低危 0.105-33 polkit: Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2568

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2017-02-13 18:59 修改: 2022-04-18 17:59
libgssapi-krb5-2 CVE-2024-26461 低危 1.19.2-2ubuntu0.3 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libpython3.10-minimal CVE-2024-4032 低危 3.10.12-1~22.04.2 3.10.12-1~22.04.5 python: incorrect IPv4 and IPv6 private ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
libpython3.10-minimal CVE-2024-7592 低危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 cpython: python: Uncontrolled CPU resource consumption when in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
libc6 CVE-2016-20013 低危 2.35-0ubuntu3.4

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
libc6 CVE-2023-4806 低危 2.35-0ubuntu3.4 2.35-0ubuntu3.5 glibc: potential use-after-free in getaddrinfo()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
libc6 CVE-2023-4813 低危 2.35-0ubuntu3.4 2.35-0ubuntu3.5 glibc: potential use-after-free in gaih_inet()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
libcairo-gobject2 CVE-2017-7475 低危 1.16.0-5ubuntu2 cairo: NULL pointer dereference with a crafted font file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2017-05-19 20:29 修改: 2023-02-12 23:30
libcairo-gobject2 CVE-2018-18064 低危 1.16.0-5ubuntu2 cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2018-10-08 18:29 修改: 2023-11-07 02:54
libcairo-gobject2 CVE-2019-6461 低危 1.16.0-5ubuntu2 cairo: assertion problem in _cairo_arc_in_direction in cairo-arc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6461

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
libcairo2 CVE-2017-7475 低危 1.16.0-5ubuntu2 cairo: NULL pointer dereference with a crafted font file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2017-05-19 20:29 修改: 2023-02-12 23:30
libcairo2 CVE-2018-18064 低危 1.16.0-5ubuntu2 cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2018-10-08 18:29 修改: 2023-11-07 02:54
python3.10 CVE-2024-4032 低危 3.10.12-1~22.04.2 3.10.12-1~22.04.5 python: incorrect IPv4 and IPv6 private ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
python3.10 CVE-2024-7592 低危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 cpython: python: Uncontrolled CPU resource consumption when in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
libcairo2 CVE-2019-6461 低危 1.16.0-5ubuntu2 cairo: assertion problem in _cairo_arc_in_direction in cairo-arc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6461

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
dbus-user-session CVE-2023-34969 低危 1.12.20-2ubuntu4.1 dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36
libpython3.10-stdlib CVE-2024-4032 低危 3.10.12-1~22.04.2 3.10.12-1~22.04.5 python: incorrect IPv4 and IPv6 private ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
libpython3.10-stdlib CVE-2024-7592 低危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 cpython: python: Uncontrolled CPU resource consumption when in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
dirmngr CVE-2022-3219 低危 2.2.27-3ubuntu2.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
coreutils CVE-2016-2781 低危 8.32-4.1ubuntu1 coreutils: Non-privileged session can escape to the parent session in chroot

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
libsndfile1 CVE-2021-4156 低危 1.0.31-2ubuntu0.1 libsndfile: heap out-of-bounds read in src/flac.c in flac_buffer_copy

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4156

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2022-03-23 20:15 修改: 2023-09-29 13:15
libsndfile1 CVE-2024-50612 低危 1.0.31-2ubuntu0.1 libsndfile: Segmentation fault error in ogg_vorbis.c:417 vorbis_analysis_wrote()

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50612

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-10-27 22:15 修改: 2024-11-05 16:14
libsndfile1 CVE-2024-50613 低危 1.0.31-2ubuntu0.1 libsndfile: Reachable assertion in mpeg_l3_encoder_close

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50613

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2024-10-27 22:15 修改: 2024-10-31 00:58
libharfbuzz0b CVE-2023-25193 低危 2.7.4-1ubuntu3.1 harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25193

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-02-04 20:15 修改: 2023-11-07 04:08
python3.10-minimal CVE-2024-4032 低危 3.10.12-1~22.04.2 3.10.12-1~22.04.5 python: incorrect IPv4 and IPv6 private ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
python3.10-minimal CVE-2024-7592 低危 3.10.12-1~22.04.2 3.10.12-1~22.04.6 cpython: python: Uncontrolled CPU resource consumption when in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
systemd CVE-2023-7008 低危 249.11-0ubuntu3.11 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
systemd-sysv CVE-2023-7008 低危 249.11-0ubuntu3.11 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
systemd-timesyncd CVE-2023-7008 低危 249.11-0ubuntu3.11 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:f00207280f7460516b964a371722be8b466bdc1ce0dee840100ea1d55a31a763

发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
gcc-11-base CVE-2021-3826 低危 11.4.0-1ubuntu1~22.04 libiberty: Heap/stack buffer overflow in the dlang_lname function in d-demangle.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3826

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2022-09-01 21:15 修改: 2024-01-22 15:01
udev CVE-2023-7008 低危 249.11-0ubuntu3.11 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
gcc-11-base CVE-2021-46195 低危 11.4.0-1ubuntu1~22.04 gcc: uncontrolled recursion in libiberty/rust-demangle.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46195

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2022-01-14 20:15 修改: 2022-01-22 01:38
gcc-11-base CVE-2022-27943 低危 11.4.0-1ubuntu1~22.04 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
libk5crypto3 CVE-2024-26458 低危 1.19.2-2ubuntu0.3 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libk5crypto3 CVE-2024-26461 低危 1.19.2-2ubuntu0.3 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
xdg-utils CVE-2022-4055 低危 1.1.3-4.1ubuntu3~22.04.1 xdg-utils: improper parse of mailto URIs allows bypass of Thunderbird security mechanism for attachments

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4055

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2022-11-19 00:15 修改: 2022-11-26 03:18
libcurl4 CVE-2024-11053 低危 7.81.0-1ubuntu1.14 7.81.0-1ubuntu1.20 curl: curl netrc password leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-12-11 08:15 修改: 2024-12-15 17:15
libsqlite3-0 CVE-2022-46908 低危 3.37.2-2ubuntu0.1 3.37.2-2ubuntu0.3 sqlite: safe mode authorizer callback allows disallowed UDFs

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-46908

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2022-12-12 06:15 修改: 2023-11-24 14:15
libcurl4 CVE-2024-9681 低危 7.81.0-1ubuntu1.14 7.81.0-1ubuntu1.19 curl: HSTS subdomain overwrites parent cache entry

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-11-06 08:15 修改: 2024-12-13 14:15
libdbus-1-3 CVE-2023-34969 低危 1.12.20-2ubuntu4.1 dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36
libkrb5-3 CVE-2024-26458 低危 1.19.2-2ubuntu0.3 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkrb5-3 CVE-2024-26461 低危 1.19.2-2ubuntu0.3 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
cpp-11 CVE-2021-3826 低危 11.4.0-1ubuntu1~22.04 libiberty: Heap/stack buffer overflow in the dlang_lname function in d-demangle.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3826

镜像层: sha256:bc7960faaf8fafd3555e595a52f63012ae9319f828d8943ccdd0fd69565b142a

发布日期: 2022-09-01 21:15 修改: 2024-01-22 15:01
libssl3 CVE-2023-5678 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.14 openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
libssl3 CVE-2023-6129 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.14 openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6129

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-01-09 17:15 修改: 2024-10-14 15:15
libssl3 CVE-2023-6237 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.14 openssl: Excessive time spent checking invalid RSA public keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6237

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-04-25 07:15 修改: 2024-11-01 15:35
libssl3 CVE-2024-0727 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.14 openssl: denial of service via null dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-01-26 09:15 修改: 2024-10-14 15:15
libssl3 CVE-2024-2511 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.17 openssl: Unbounded memory growth with session handling in TLSv1.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-04-08 14:15 修改: 2024-10-14 15:15
libssl3 CVE-2024-41996 低危 3.0.2-0ubuntu1.12 openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
libssl3 CVE-2024-4603 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.17 openssl: Excessive time spent checking DSA keys and parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4603

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-05-16 16:15 修改: 2024-10-14 15:15
libssl3 CVE-2024-4741 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.17 openssl: Use After Free with SSL_free_buffers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-11-13 11:15 修改: 2024-11-13 17:01
libssl3 CVE-2024-5535 低危 3.0.2-0ubuntu1.12 3.0.2-0ubuntu1.17 openssl: SSL_select_next_proto buffer overread

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
gcc-12-base CVE-2022-27943 低危 12.3.0-1ubuntu1~22.04 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
libstdc++6 CVE-2022-27943 低危 12.3.0-1ubuntu1~22.04 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:256d88da41857db513b95b50ba9a9b28491b58c954e25477d5dad8abb465430b

发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
libsystemd0 CVE-2023-7008 低危 249.11-0ubuntu3.11 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
gnupg CVE-2022-3219 低危 2.2.27-3ubuntu2.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libkrb5support0 CVE-2024-26458 低危 1.19.2-2ubuntu0.3 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkrb5support0 CVE-2024-26461 低危 1.19.2-2ubuntu0.3 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libldap-2.5-0 CVE-2023-2953 低危 2.5.16+dfsg-0ubuntu0.22.04.1 2.5.16+dfsg-0ubuntu0.22.04.2 openldap: null pointer dereference in ber_memalloc_x function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953

镜像层: sha256:50dbd246842b829f9d6bbed950bfae42b16980bdf1ac3d82fb25b079270d2e61

发布日期: 2023-05-30 22:15 修改: 2025-01-10 22:15
libtiff5 CVE-2023-3164 低危 4.3.0-6ubuntu0.6 4.3.0-6ubuntu0.9 libtiff: heap-buffer-overflow in extractImageSection()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3164

镜像层: sha256:09c3c66618d08f6fd7feae237d78d5ba4215098cd8dbf1c30be1ef5f4163a222

发布日期: 2023-11-02 12:15 修改: 2024-03-08 19:38
libtiff5 CVE-2023-3576 低危 4.3.0-6ubuntu0.6 4.3.0-6ubuntu0.7 libtiff: memory leak in tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3576

镜像层: sha256:09c3c66618d08f6fd7feae237d78d5ba4215098cd8dbf1c30be1ef5f4163a222

发布日期: 2023-10-04 19:15 修改: 2024-09-16 13:15
libtiff5 CVE-2023-6228 低危 4.3.0-6ubuntu0.6 4.3.0-6ubuntu0.8 libtiff: heap-based buffer overflow in cpStripToTile() in tools/tiffcp.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6228

镜像层: sha256:09c3c66618d08f6fd7feae237d78d5ba4215098cd8dbf1c30be1ef5f4163a222

发布日期: 2023-12-18 14:15 修改: 2024-10-11 16:15
Java (jar)
低危漏洞:0 中危漏洞:4 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
io.netty:netty-codec-http2 GHSA-xpw8-rcwv-8f8p 高危 4.1.97.Final 4.1.100.Final io.netty:netty-codec-http2 vulnerable to HTTP/2 Rapid Reset Attack

漏洞详情: https://github.com/advisories/GHSA-xpw8-rcwv-8f8p

镜像层: sha256:ca2d777f4a709e88056a1ba2f3467ce0a57be797d6a120b0121d52b15ad48694

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
io.netty:netty-codec-http CVE-2024-29025 中危 4.1.97.Final 4.1.108.Final netty-codec-http: Allocation of Resources Without Limits or Throttling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29025

镜像层: sha256:ca2d777f4a709e88056a1ba2f3467ce0a57be797d6a120b0121d52b15ad48694

发布日期: 2024-03-25 20:15 修改: 2024-06-21 22:15
io.netty:netty-codec-http CVE-2024-29025 中危 4.1.100.Final 4.1.108.Final netty-codec-http: Allocation of Resources Without Limits or Throttling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29025

镜像层: sha256:771eeed367d2a9389ec5ad27cd8348f81db4aa4c48381edb86892d3938ae0819

发布日期: 2024-03-25 20:15 修改: 2024-06-21 22:15
io.netty:netty-common CVE-2024-47535 中危 4.1.100.Final 4.1.115 netty: Denial of Service attack on windows app using Netty

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47535

镜像层: sha256:771eeed367d2a9389ec5ad27cd8348f81db4aa4c48381edb86892d3938ae0819

发布日期: 2024-11-12 16:15 修改: 2024-11-13 17:01
io.netty:netty-common CVE-2024-47535 中危 4.1.97.Final 4.1.115 netty: Denial of Service attack on windows app using Netty

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47535

镜像层: sha256:ca2d777f4a709e88056a1ba2f3467ce0a57be797d6a120b0121d52b15ad48694

发布日期: 2024-11-12 16:15 修改: 2024-11-13 17:01
Node.js (node-pkg)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息