docker.io/sonatype/nexus3:3.39.0 linux/amd64

docker.io/sonatype/nexus3:3.39.0 - Trivy安全扫描结果 扫描时间: 2024-11-02 19:44
全部漏洞信息
低危漏洞:292 中危漏洞:444 高危漏洞:80 严重漏洞:7

系统OS: redhat 8.6 扫描引擎: Trivy 扫描时间: 2024-11-02 19:44

docker.io/sonatype/nexus3:3.39.0 (redhat 8.6) (redhat)
低危漏洞:284 中危漏洞:410 高危漏洞:55 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
cups-libs CVE-2022-26691 高危 1:2.2.6-44.el8 1:2.2.6-45.el8_6.2 cups: authorization bypass when using "local" authorization

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-26691

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-05-26 18:15 修改: 2023-11-07 03:45
cups-libs CVE-2023-32360 高危 1:2.2.6-44.el8 1:2.2.6-51.el8_8.1 cups: Information leak through Cups-Get-Document operation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32360

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-23 18:15 修改: 2023-09-30 20:15
dnf-plugin-subscription-manager CVE-2023-3899 高危 1.28.29-3.el8 1.28.36-3.el8_8 subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allows local users to modify configuration

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3899

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-23 11:15 修改: 2024-09-16 13:15
expat CVE-2022-40674 高危 2.2.5-8.el8 2.2.5-8.el8_6.3 expat: a use-after-free in the doContent function in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40674

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-14 11:15 修改: 2023-11-07 03:52
glibc CVE-2023-4911 高危 2.28-189.1.el8 2.28-225.el8_8.6 glibc: buffer overflow in ld.so leading to privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-10-03 18:15 修改: 2024-09-17 19:46
glibc CVE-2024-2961 高危 2.28-189.1.el8 2.28-251.el8_10.1 glibc: Out of bounds write in iconv may lead to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc CVE-2024-33599 高危 2.28-189.1.el8 2.28-251.el8_10.2 glibc: stack-based buffer overflow in netgroup cache

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-common CVE-2023-4911 高危 2.28-189.1.el8 2.28-225.el8_8.6 glibc: buffer overflow in ld.so leading to privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-10-03 18:15 修改: 2024-09-17 19:46
glibc-common CVE-2024-2961 高危 2.28-189.1.el8 2.28-251.el8_10.1 glibc: Out of bounds write in iconv may lead to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc-common CVE-2024-33599 高危 2.28-189.1.el8 2.28-251.el8_10.2 glibc: stack-based buffer overflow in netgroup cache

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-minimal-langpack CVE-2023-4911 高危 2.28-189.1.el8 2.28-225.el8_8.6 glibc: buffer overflow in ld.so leading to privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-10-03 18:15 修改: 2024-09-17 19:46
glibc-minimal-langpack CVE-2024-2961 高危 2.28-189.1.el8 2.28-251.el8_10.1 glibc: Out of bounds write in iconv may lead to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc-minimal-langpack CVE-2024-33599 高危 2.28-189.1.el8 2.28-251.el8_10.2 glibc: stack-based buffer overflow in netgroup cache

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
java-1.8.0-openjdk CVE-2022-34169 高危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.342.b07-2.el8_6 OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34169

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-07-19 18:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk CVE-2023-21930 高危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: improper connection handling during TLS handshake (8294474)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21930

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk CVE-2024-20918 高危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: array out-of-bounds access due to missing range check in C1 compiler (8314468)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20918

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-16 22:15 修改: 2024-02-15 03:18
java-1.8.0-openjdk CVE-2024-20952 高危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: RSA padding issue and timing side-channel attack against TLS (8317547)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20952

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-16 22:15 修改: 2024-08-30 16:35
java-1.8.0-openjdk CVE-2024-21147 高危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: RangeCheckElimination array index overflow (8323231)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21147

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-08-13 00:49
java-1.8.0-openjdk-devel CVE-2022-34169 高危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.342.b07-2.el8_6 OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34169

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-07-19 18:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-devel CVE-2023-21930 高危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: improper connection handling during TLS handshake (8294474)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21930

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-devel CVE-2024-20918 高危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: array out-of-bounds access due to missing range check in C1 compiler (8314468)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20918

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-16 22:15 修改: 2024-02-15 03:18
java-1.8.0-openjdk-devel CVE-2024-20952 高危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: RSA padding issue and timing side-channel attack against TLS (8317547)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20952

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-16 22:15 修改: 2024-08-30 16:35
java-1.8.0-openjdk-devel CVE-2024-21147 高危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: RangeCheckElimination array index overflow (8323231)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21147

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-08-13 00:49
java-1.8.0-openjdk-headless CVE-2022-34169 高危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.342.b07-2.el8_6 OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34169

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-07-19 18:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-headless CVE-2023-21930 高危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: improper connection handling during TLS handshake (8294474)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21930

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-headless CVE-2024-20918 高危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: array out-of-bounds access due to missing range check in C1 compiler (8314468)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20918

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-16 22:15 修改: 2024-02-15 03:18
java-1.8.0-openjdk-headless CVE-2024-20952 高危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: RSA padding issue and timing side-channel attack against TLS (8317547)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20952

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-16 22:15 修改: 2024-08-30 16:35
java-1.8.0-openjdk-headless CVE-2024-21147 高危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: RangeCheckElimination array index overflow (8323231)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21147

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-08-13 00:49
krb5-libs CVE-2022-42898 高危 1.18.2-14.el8 1.18.2-25.el8_8 krb5: integer overflow vulnerabilities in PAC parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42898

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-12-25 06:15 修改: 2023-10-08 09:15
libksba CVE-2022-3515 高危 1.3.5-7.el8 1.3.5-8.el8_6 libksba: integer overflow may lead to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3515

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-01-12 15:15 修改: 2023-07-06 19:15
libksba CVE-2022-47629 高危 1.3.5-7.el8 1.3.5-9.el8_7 libksba: integer overflow to code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-47629

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-12-20 23:15 修改: 2023-11-07 03:56
libnghttp2 CVE-2023-44487 高危 1.33.0-3.el8_2.1 1.33.0-5.el8_8 HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-10-10 14:15 修改: 2024-08-14 19:57
nss CVE-2023-0767 高危 3.67.0-7.el8_5 3.79.0-11.el8_7 nss: Arbitrary memory write via PKCS 12

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0767

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-02 17:15 修改: 2023-08-02 16:45
nss-softokn CVE-2023-0767 高危 3.67.0-7.el8_5 3.79.0-11.el8_7 nss: Arbitrary memory write via PKCS 12

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0767

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-02 17:15 修改: 2023-08-02 16:45
nss-softokn-freebl CVE-2023-0767 高危 3.67.0-7.el8_5 3.79.0-11.el8_7 nss: Arbitrary memory write via PKCS 12

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0767

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-02 17:15 修改: 2023-08-02 16:45
nss-sysinit CVE-2023-0767 高危 3.67.0-7.el8_5 3.79.0-11.el8_7 nss: Arbitrary memory write via PKCS 12

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0767

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-02 17:15 修改: 2023-08-02 16:45
nss-util CVE-2023-0767 高危 3.67.0-7.el8_5 3.79.0-11.el8_7 nss: Arbitrary memory write via PKCS 12

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0767

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-02 17:15 修改: 2023-08-02 16:45
openssl-libs CVE-2023-0286 高危 1:1.1.1k-6.el8_5 1:1.1.1k-9.el8_7 openssl: X.400 address type confusion in X.509 GeneralName

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
platform-python CVE-2023-24329 高危 3.6.8-45.el8 3.6.8-51.el8_8.1 python: urllib.parse url blocklisting bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
platform-python CVE-2023-40217 高危 3.6.8-45.el8 3.6.8-51.el8_8.2 python: TLS handshake bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
platform-python CVE-2023-6597 高危 3.6.8-45.el8 3.6.8-62.el8_10 python: Path traversal on tempfile.TemporaryDirectory

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
platform-python-setuptools CVE-2024-6345 高危 39.2.0-6.el8 39.2.0-8.el8_10 pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6345

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-07-15 01:15 修改: 2024-07-15 13:00
python3-cloud-what CVE-2023-3899 高危 1.28.29-3.el8 1.28.36-3.el8_8 subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allows local users to modify configuration

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3899

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-23 11:15 修改: 2024-09-16 13:15
python3-libs CVE-2023-24329 高危 3.6.8-45.el8 3.6.8-51.el8_8.1 python: urllib.parse url blocklisting bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
python3-libs CVE-2023-40217 高危 3.6.8-45.el8 3.6.8-51.el8_8.2 python: TLS handshake bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
python3-libs CVE-2023-6597 高危 3.6.8-45.el8 3.6.8-62.el8_10 python: Path traversal on tempfile.TemporaryDirectory

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python3-setuptools-wheel CVE-2024-6345 高危 39.2.0-6.el8 39.2.0-8.el8_10 pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6345

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-07-15 01:15 修改: 2024-07-15 13:00
python3-subscription-manager-rhsm CVE-2023-3899 高危 1.28.29-3.el8 1.28.36-3.el8_8 subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allows local users to modify configuration

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3899

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-23 11:15 修改: 2024-09-16 13:15
python3-syspurpose CVE-2023-3899 高危 1.28.29-3.el8 1.28.36-3.el8_8 subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allows local users to modify configuration

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3899

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-23 11:15 修改: 2024-09-16 13:15
subscription-manager CVE-2023-3899 高危 1.28.29-3.el8 1.28.36-3.el8_8 subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allows local users to modify configuration

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3899

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-23 11:15 修改: 2024-09-16 13:15
subscription-manager-rhsm-certificates CVE-2023-3899 高危 1.28.29-3.el8 1.28.36-3.el8_8 subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allows local users to modify configuration

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3899

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-23 11:15 修改: 2024-09-16 13:15
systemd CVE-2022-2526 高危 239-58.el8 239-58.el8_6.4 systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2526

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-09 15:15 修改: 2023-01-20 03:17
systemd-libs CVE-2022-2526 高危 239-58.el8 239-58.el8_6.4 systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2526

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-09 15:15 修改: 2023-01-20 03:17
systemd-pam CVE-2022-2526 高危 239-58.el8 239-58.el8_6.4 systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2526

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-09 15:15 修改: 2023-01-20 03:17
xz-libs CVE-2022-1271 高危 5.2.4-3.el8 5.2.4-4.el8_6 gzip: arbitrary-file-write vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47
expat CVE-2024-45490 中危 2.2.5-8.el8 2.2.5-15.el8_10 libexpat: Negative Length Parsing Vulnerability in libexpat

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45490

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-08-30 03:15 修改: 2024-10-18 12:24
expat CVE-2024-45491 中危 2.2.5-8.el8 2.2.5-15.el8_10 libexpat: Integer Overflow or Wraparound

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45491

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
expat CVE-2024-45492 中危 2.2.5-8.el8 2.2.5-15.el8_10 libexpat: integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45492

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
expat CVE-2024-50602 中危 2.2.5-8.el8 libexpat: expat: DoS via XML_ResumeParser

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50602

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-10-27 05:15 修改: 2024-10-30 18:35
freetype CVE-2022-27404 中危 2.9.1-4.el8_3.1 2.9.1-9.el8 FreeType: Buffer overflow in sfnt_init_face

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27404

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
freetype CVE-2022-27405 中危 2.9.1-4.el8_3.1 2.9.1-9.el8 FreeType: Segmentation violation via FNT_Size_Request

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27405

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
freetype CVE-2022-27406 中危 2.9.1-4.el8_3.1 2.9.1-9.el8 Freetype: Segmentation violation via FT_Request_Size

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27406

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
fribidi CVE-2022-25308 中危 1.0.4-8.el8 1.0.4-9.el8 fribidi: Stack based buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25308

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-09-06 18:15 修改: 2023-02-12 22:15
fribidi CVE-2022-25309 中危 1.0.4-8.el8 1.0.4-9.el8 fribidi: Heap-buffer-overflow in fribidi_cap_rtl_to_unicode

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25309

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-09-06 18:15 修改: 2023-02-12 22:15
gdk-pixbuf2 CVE-2022-48622 中危 2.36.12-5.el8 2.36.12-6.el8_10 gnome: heap memory corruption on gdk-pixbuf

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48622

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-26 09:15 修改: 2024-08-26 20:35
gdk-pixbuf2-modules CVE-2022-48622 中危 2.36.12-5.el8 2.36.12-6.el8_10 gnome: heap memory corruption on gdk-pixbuf

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48622

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-26 09:15 修改: 2024-08-26 20:35
giflib CVE-2023-48161 中危 5.1.4-3.el8 giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48161

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-11-22 06:15 修改: 2023-11-29 18:48
glib2 CVE-2022-22624 中危 2.56.4-158.el8 2.56.4-159.el8 webkitgtk: Use-after-free leading to arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22624

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-23 19:15 修改: 2022-09-28 12:03
glib2 CVE-2022-22628 中危 2.56.4-158.el8 2.56.4-159.el8 webkitgtk: Use-after-free leading to arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22628

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-23 19:15 修改: 2022-09-28 12:06
glib2 CVE-2022-22629 中危 2.56.4-158.el8 2.56.4-159.el8 webkitgtk: Buffer overflow leading to arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22629

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-23 20:15 修改: 2022-09-27 04:48
glib2 CVE-2022-22662 中危 2.56.4-158.el8 2.56.4-159.el8

漏洞详情:

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2 CVE-2022-26700 中危 2.56.4-158.el8 2.56.4-159.el8

漏洞详情:

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2 CVE-2022-26709 中危 2.56.4-158.el8 2.56.4-159.el8

漏洞详情:

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2 CVE-2022-26710 中危 2.56.4-158.el8 2.56.4-159.el8

漏洞详情:

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2 CVE-2022-26716 中危 2.56.4-158.el8 2.56.4-159.el8

漏洞详情:

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2 CVE-2022-26717 中危 2.56.4-158.el8 2.56.4-159.el8

漏洞详情:

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2 CVE-2022-26719 中危 2.56.4-158.el8 2.56.4-159.el8

漏洞详情:

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2 CVE-2022-30293 中危 2.56.4-158.el8 2.56.4-159.el8

漏洞详情:

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2 CVE-2022-32792 中危 2.56.4-158.el8 2.56.4-159.el8

漏洞详情:

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2 CVE-2022-32816 中危 2.56.4-158.el8 2.56.4-159.el8

漏洞详情:

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glib2 CVE-2022-32891 中危 2.56.4-158.el8 2.56.4-159.el8 webkitgtk: UI spoofing while Visiting a website that frames malicious content

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32891

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-02-27 20:15 修改: 2023-05-30 06:15
glib2 CVE-2024-34397 中危 2.56.4-158.el8 glib2: Signal subscription vulnerabilities

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34397

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-05-07 18:15 修改: 2024-06-10 18:15
avahi-libs CVE-2023-38470 中危 0.7-20.el8 0.7-21.el8_9.1 avahi: Reachable assertion in avahi_escape_label

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38470

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
avahi-libs CVE-2023-38471 中危 0.7-20.el8 0.7-21.el8_9.1 avahi: Reachable assertion in dbus_set_host_name

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38471

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
avahi-libs CVE-2023-38472 中危 0.7-20.el8 0.7-21.el8_9.1 avahi: Reachable assertion in avahi_rdata_parse

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38472

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
glibc CVE-2023-4527 中危 2.28-189.1.el8 2.28-225.el8_8.6 glibc: Stack read overflow in getaddrinfo in no-aaaa mode

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc CVE-2023-4806 中危 2.28-189.1.el8 2.28-225.el8_8.6 glibc: potential use-after-free in getaddrinfo()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc CVE-2023-4813 中危 2.28-189.1.el8 2.28-225.el8_8.6 glibc: potential use-after-free in gaih_inet()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
glibc CVE-2024-33600 中危 2.28-189.1.el8 2.28-251.el8_10.2 glibc: null pointer dereferences after failed netgroup cache insertion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
avahi-libs CVE-2023-38473 中危 0.7-20.el8 0.7-21.el8_9.1 avahi: Reachable assertion in avahi_alternative_host_name

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38473

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-11-02 16:15 修改: 2023-11-09 17:46
cairo CVE-2018-18064 中危 1.15.12-6.el8 cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-10-08 18:29 修改: 2023-11-07 02:54
avahi-libs CVE-2021-3468 中危 0.7-20.el8 0.7-21.el8_9.1 avahi: Local DoS by event-busy-loop from writing long lines to /run/avahi-daemon/socket

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3468

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2021-06-02 16:15 修改: 2023-06-22 02:15
glibc-common CVE-2023-4527 中危 2.28-189.1.el8 2.28-225.el8_8.6 glibc: Stack read overflow in getaddrinfo in no-aaaa mode

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-common CVE-2023-4806 中危 2.28-189.1.el8 2.28-225.el8_8.6 glibc: potential use-after-free in getaddrinfo()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-common CVE-2023-4813 中危 2.28-189.1.el8 2.28-225.el8_8.6 glibc: potential use-after-free in gaih_inet()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
glibc-common CVE-2024-33600 中危 2.28-189.1.el8 2.28-251.el8_10.2 glibc: null pointer dereferences after failed netgroup cache insertion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
avahi-libs CVE-2021-36217 中危 0.7-20.el8 avahi: local DoS against avahi-daemon via D-Bus interface

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36217

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2021-07-07 18:15 修改: 2023-11-07 03:36
cups-libs CVE-2023-32324 中危 1:2.2.6-44.el8 1:2.2.6-54.el8_9 cups: heap buffer overflow may lead to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32324

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-01 17:15 修改: 2023-06-08 14:32
cups-libs CVE-2023-34241 中危 1:2.2.6-44.el8 1:2.2.6-54.el8_9 cups: use-after-free in cupsdAcceptClient() in scheduler/client.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34241

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-22 23:15 修改: 2023-11-17 19:33
glibc-minimal-langpack CVE-2023-4527 中危 2.28-189.1.el8 2.28-225.el8_8.6 glibc: Stack read overflow in getaddrinfo in no-aaaa mode

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-minimal-langpack CVE-2023-4806 中危 2.28-189.1.el8 2.28-225.el8_8.6 glibc: potential use-after-free in getaddrinfo()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-minimal-langpack CVE-2023-4813 中危 2.28-189.1.el8 2.28-225.el8_8.6 glibc: potential use-after-free in gaih_inet()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
glibc-minimal-langpack CVE-2024-33600 中危 2.28-189.1.el8 2.28-251.el8_10.2 glibc: null pointer dereferences after failed netgroup cache insertion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
gmp CVE-2021-43618 中危 1:6.1.2-10.el8 1:6.1.2-11.el8 gmp: Integer overflow and resultant buffer overflow via crafted input

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43618

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2021-11-15 04:15 修改: 2023-09-29 15:15
gnupg2 CVE-2022-34903 中危 2.2.20-2.el8 2.2.20-3.el8_6 gpg: Signature spoofing via status line injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
gnutls CVE-2022-2509 中危 3.6.16-4.el8 3.6.16-5.el8_6 gnutls: Double free during gnutls_pkcs7_verify

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2509

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-01 14:15 修改: 2023-11-07 03:46
gnutls CVE-2023-0361 中危 3.6.16-4.el8 3.6.16-6.el8_7 gnutls: timing side-channel in the TLS RSA key exchange code

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0361

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-02-15 18:15 修改: 2023-11-07 04:00
gnutls CVE-2023-5981 中危 3.6.16-4.el8 3.6.16-8.el8_9 gnutls: timing side-channel in the RSA-PSK authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5981

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-11-28 12:15 修改: 2024-09-16 13:15
gnutls CVE-2024-0553 中危 3.6.16-4.el8 3.6.16-8.el8_9.1 gnutls: incomplete fix for CVE-2023-5981

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0553

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-01-16 12:15 修改: 2024-09-16 13:15
gnutls CVE-2024-28834 中危 3.6.16-4.el8 3.6.16-8.el8_9.3 gnutls: vulnerable to Minerva side-channel information leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28834

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-03-21 14:15 修改: 2024-09-12 20:15
gtk-update-icon-cache CVE-2024-6655 中危 3.22.30-10.el8 3.22.30-12.el8_10 gtk3: gtk2: Library injection from CWD

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6655

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 15:15 修改: 2024-09-25 01:15
harfbuzz CVE-2023-25193 中危 1.7.5-3.el8 1.7.5-4.el8 harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25193

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-04 20:15 修改: 2023-11-07 04:08
jasper-libs CVE-2017-5503 中危 2.0.14-5.el8 jasper: invalid memory write in dec_clnpass()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-5503

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2017-03-01 15:59 修改: 2020-09-25 12:15
jasper-libs CVE-2017-5504 中危 2.0.14-5.el8 jasper: Invalid memory read in jpc_undo_roi

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-5504

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2017-03-01 15:59 修改: 2020-09-25 12:15
jasper-libs CVE-2017-5505 中危 2.0.14-5.el8 jasper: Invalid memory read in jas_matrix_asl

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-5505

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2017-03-16 15:59 修改: 2020-09-25 12:15
jasper-libs CVE-2021-3443 中危 2.0.14-5.el8 jasper: NULL pointer dereference in jp2_decode() in jp2_dec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3443

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2021-03-25 19:15 修改: 2021-03-30 16:52
jasper-libs CVE-2021-3467 中危 2.0.14-5.el8 jasper: NULL pointer dereference in jp2_decode() in jp2_dec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3467

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2021-03-25 19:15 修改: 2023-11-07 03:38
jasper-libs CVE-2022-2963 中危 2.0.14-5.el8 jasper: memory leaks in function cmdopts_parse

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2963

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-14 18:15 修改: 2022-10-18 18:04
cups-libs CVE-2023-4504 中危 1:2.2.6-44.el8 libppd: Postscript Parsing Heap Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4504

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-09-21 23:15 修改: 2023-11-09 20:58
cups-libs CVE-2024-35235 中危 1:2.2.6-44.el8 1:2.2.6-60.el8_10 cups: Cupsd Listen arbitrary chmod 0140777

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35235

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-06-11 15:16 修改: 2024-06-14 03:15
curl CVE-2022-22576 中危 7.61.1-22.el8 7.61.1-22.el8_6.3 curl: OAUTH2 bearer bypass in connection re-use

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22576

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-05-26 17:15 修改: 2024-03-27 15:02
curl CVE-2022-27774 中危 7.61.1-22.el8 7.61.1-22.el8_6.3 curl: credential leak on redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27774

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
curl CVE-2022-27776 中危 7.61.1-22.el8 7.61.1-22.el8_6.3 curl: auth/cookie leak on redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27776

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
java-1.8.0-openjdk CVE-2022-21540 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.342.b07-2.el8_6 OpenJDK: class compilation issue (Hotspot, 8281859)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21540

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-07-19 22:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk CVE-2022-21541 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.342.b07-2.el8_6 OpenJDK: improper restriction of MethodHandle.invokeBasic() (Hotspot, 8281866)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21541

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-07-19 22:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk CVE-2022-21626 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.352.b08-2.el8_6 OpenJDK: excessive memory allocation in X.509 certificate parsing (Security, 8286533)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21626

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk CVE-2022-21628 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.352.b08-2.el8_6 OpenJDK: HttpServer no connection count limit (Lightweight HTTP Server, 8286918)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21628

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk CVE-2022-40433 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.392.b08-4.el8

漏洞详情:

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
java-1.8.0-openjdk CVE-2023-21830 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.362.b09-2.el8_7 OpenJDK: improper restrictions in CORBA deserialization (Serialization, 8285021)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21830

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-01-18 00:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk CVE-2023-21939 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: Swing HTML parsing issue (8296832)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21939

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk CVE-2023-21954 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: incorrect enqueue of references in garbage collector (8298191)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21954

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk CVE-2023-21967 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: certificate validation issue in TLS session negotiation (8298310)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21967

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk CVE-2023-22049 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.382.b05-2.el8 OpenJDK: improper handling of slash characters in URI-to-path conversion (8305312)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22049

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-07-18 21:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk CVE-2023-22067 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.392.b08-4.el8 OpenJDK: IOR deserialization issue in CORBA (8303384)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22067

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-17 22:15 修改: 2024-02-01 02:09
java-1.8.0-openjdk CVE-2023-22081 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.392.b08-4.el8 OpenJDK: certificate path validation issue during client authentication (8309966)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22081

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-17 22:15 修改: 2024-02-16 15:55
java-1.8.0-openjdk CVE-2023-48161 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.432.b06-2.el8 giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48161

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-11-22 06:15 修改: 2023-11-29 18:48
java-1.8.0-openjdk CVE-2024-20919 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: JVM class file verifier flaw allows unverified bytecode execution (8314295)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20919

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-02-17 02:15 修改: 2024-02-20 19:51
java-1.8.0-openjdk CVE-2024-20921 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: range check loop optimization issue (8314307)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20921

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-02-17 02:15 修改: 2024-02-20 19:51
java-1.8.0-openjdk CVE-2024-20926 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: arbitrary Java code execution in Nashorn (8314284)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20926

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-16 22:15 修改: 2024-02-02 17:35
java-1.8.0-openjdk CVE-2024-20945 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: logging of digital signature private keys (8316976)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20945

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-02-17 02:15 修改: 2024-02-20 19:51
java-1.8.0-openjdk CVE-2024-21011 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.412.b08-2.el8 OpenJDK: long Exception message leading to crash (8319851)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21011

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15
java-1.8.0-openjdk CVE-2024-21068 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.412.b08-2.el8 OpenJDK: integer overflow in C1 compiler address generation (8322122)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21068

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15
java-1.8.0-openjdk CVE-2024-21085 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.412.b08-2.el8 OpenJDK: Pack200 excessive memory allocation (8322114)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21085

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15
java-1.8.0-openjdk CVE-2024-21094 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.412.b08-2.el8 OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21094

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-04-16 22:15 修改: 2024-07-03 01:46
java-1.8.0-openjdk CVE-2024-21131 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: potential UTF8 size overflow (8314794)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21131

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-07-19 14:15
java-1.8.0-openjdk CVE-2024-21138 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: Excessive symbol length can lead to infinite loop (8319859)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21138

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-07-19 14:15
java-1.8.0-openjdk CVE-2024-21140 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: Range Check Elimination (RCE) pre-loop limit overflow (8320548)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21140

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-08-01 13:46
java-1.8.0-openjdk CVE-2024-21144 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: Pack200 increase loading time due to improper header validation (8322106)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21144

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-09-18 15:15
java-1.8.0-openjdk CVE-2024-21145 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: Out-of-bounds access in 2D image handling (8324559)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21145

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-09-20 13:46
java-1.8.0-openjdk CVE-2024-21208 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.432.b06-2.el8 JDK: HTTP client improper handling of maxHeaderSize (8328286)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21208

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-15 20:15 修改: 2024-10-31 13:35
java-1.8.0-openjdk CVE-2024-21210 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.432.b06-2.el8 JDK: Array indexing integer overflow (8328544)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21210

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-15 20:15 修改: 2024-10-31 13:35
java-1.8.0-openjdk CVE-2024-21217 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.432.b06-2.el8 JDK: Unbounded allocation leads to out-of-memory error (8331446)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21217

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-15 20:15 修改: 2024-10-18 18:29
java-1.8.0-openjdk CVE-2024-21235 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.432.b06-2.el8 JDK: Integer conversion error leads to incorrect range check (8332644)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21235

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-15 20:15 修改: 2024-10-18 18:30
curl CVE-2022-27782 中危 7.61.1-22.el8 7.61.1-22.el8_6.3 curl: TLS and SSH connection too eager reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27782

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
curl CVE-2022-32206 中危 7.61.1-22.el8 7.61.1-22.el8_6.4 curl: HTTP compression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32206

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
curl CVE-2022-32208 中危 7.61.1-22.el8 7.61.1-22.el8_6.4 curl: FTP-KRB bad message verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32208

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
curl CVE-2023-23916 中危 7.61.1-22.el8 7.61.1-25.el8_7.3 curl: HTTP multi-header compression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54
curl CVE-2023-27535 中危 7.61.1-22.el8 7.61.1-30.el8_8.2 curl: FTP too eager connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47
java-1.8.0-openjdk-devel CVE-2022-21540 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.342.b07-2.el8_6 OpenJDK: class compilation issue (Hotspot, 8281859)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21540

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-07-19 22:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk-devel CVE-2022-21541 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.342.b07-2.el8_6 OpenJDK: improper restriction of MethodHandle.invokeBasic() (Hotspot, 8281866)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21541

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-07-19 22:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk-devel CVE-2022-21626 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.352.b08-2.el8_6 OpenJDK: excessive memory allocation in X.509 certificate parsing (Security, 8286533)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21626

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk-devel CVE-2022-21628 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.352.b08-2.el8_6 OpenJDK: HttpServer no connection count limit (Lightweight HTTP Server, 8286918)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21628

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk-devel CVE-2022-40433 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.392.b08-4.el8

漏洞详情:

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
java-1.8.0-openjdk-devel CVE-2023-21830 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.362.b09-2.el8_7 OpenJDK: improper restrictions in CORBA deserialization (Serialization, 8285021)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21830

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-01-18 00:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk-devel CVE-2023-21939 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: Swing HTML parsing issue (8296832)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21939

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-devel CVE-2023-21954 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: incorrect enqueue of references in garbage collector (8298191)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21954

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-devel CVE-2023-21967 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: certificate validation issue in TLS session negotiation (8298310)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21967

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-devel CVE-2023-22049 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.382.b05-2.el8 OpenJDK: improper handling of slash characters in URI-to-path conversion (8305312)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22049

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-07-18 21:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-devel CVE-2023-22067 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.392.b08-4.el8 OpenJDK: IOR deserialization issue in CORBA (8303384)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22067

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-17 22:15 修改: 2024-02-01 02:09
java-1.8.0-openjdk-devel CVE-2023-22081 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.392.b08-4.el8 OpenJDK: certificate path validation issue during client authentication (8309966)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22081

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-17 22:15 修改: 2024-02-16 15:55
java-1.8.0-openjdk-devel CVE-2023-48161 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.432.b06-2.el8 giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48161

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-11-22 06:15 修改: 2023-11-29 18:48
java-1.8.0-openjdk-devel CVE-2024-20919 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: JVM class file verifier flaw allows unverified bytecode execution (8314295)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20919

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-02-17 02:15 修改: 2024-02-20 19:51
java-1.8.0-openjdk-devel CVE-2024-20921 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: range check loop optimization issue (8314307)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20921

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-02-17 02:15 修改: 2024-02-20 19:51
java-1.8.0-openjdk-devel CVE-2024-20926 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: arbitrary Java code execution in Nashorn (8314284)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20926

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-16 22:15 修改: 2024-02-02 17:35
java-1.8.0-openjdk-devel CVE-2024-20945 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: logging of digital signature private keys (8316976)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20945

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-02-17 02:15 修改: 2024-02-20 19:51
java-1.8.0-openjdk-devel CVE-2024-21011 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.412.b08-2.el8 OpenJDK: long Exception message leading to crash (8319851)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21011

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15
java-1.8.0-openjdk-devel CVE-2024-21068 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.412.b08-2.el8 OpenJDK: integer overflow in C1 compiler address generation (8322122)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21068

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15
java-1.8.0-openjdk-devel CVE-2024-21085 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.412.b08-2.el8 OpenJDK: Pack200 excessive memory allocation (8322114)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21085

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15
java-1.8.0-openjdk-devel CVE-2024-21094 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.412.b08-2.el8 OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21094

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-04-16 22:15 修改: 2024-07-03 01:46
java-1.8.0-openjdk-devel CVE-2024-21131 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: potential UTF8 size overflow (8314794)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21131

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-07-19 14:15
java-1.8.0-openjdk-devel CVE-2024-21138 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: Excessive symbol length can lead to infinite loop (8319859)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21138

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-07-19 14:15
java-1.8.0-openjdk-devel CVE-2024-21140 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: Range Check Elimination (RCE) pre-loop limit overflow (8320548)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21140

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-08-01 13:46
java-1.8.0-openjdk-devel CVE-2024-21144 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: Pack200 increase loading time due to improper header validation (8322106)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21144

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-09-18 15:15
java-1.8.0-openjdk-devel CVE-2024-21145 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: Out-of-bounds access in 2D image handling (8324559)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21145

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-09-20 13:46
java-1.8.0-openjdk-devel CVE-2024-21208 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.432.b06-2.el8 JDK: HTTP client improper handling of maxHeaderSize (8328286)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21208

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-15 20:15 修改: 2024-10-31 13:35
java-1.8.0-openjdk-devel CVE-2024-21210 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.432.b06-2.el8 JDK: Array indexing integer overflow (8328544)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21210

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-15 20:15 修改: 2024-10-31 13:35
java-1.8.0-openjdk-devel CVE-2024-21217 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.432.b06-2.el8 JDK: Unbounded allocation leads to out-of-memory error (8331446)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21217

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-15 20:15 修改: 2024-10-18 18:29
java-1.8.0-openjdk-devel CVE-2024-21235 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.432.b06-2.el8 JDK: Integer conversion error leads to incorrect range check (8332644)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21235

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-15 20:15 修改: 2024-10-18 18:30
curl CVE-2023-27536 中危 7.61.1-22.el8 7.61.1-30.el8_8.3 curl: GSS delegation too eager connection re-use

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
curl CVE-2023-28321 中危 7.61.1-22.el8 7.61.1-30.el8_8.3 curl: IDN wildcard match may lead to Improper Cerificate Validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-05-26 21:15 修改: 2023-11-07 04:10
curl CVE-2023-46218 中危 7.61.1-22.el8 7.61.1-33.el8_9.5 curl: information disclosure by exploiting a mixed case flaw

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
curl CVE-2024-2398 中危 7.61.1-22.el8 7.61.1-34.el8_10.2 curl: HTTP/2 push headers memory-leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
dbus CVE-2022-42010 中危 1:1.12.8-18.el8 1:1.12.8-23.el8_7.1 dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42010

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
java-1.8.0-openjdk-headless CVE-2022-21540 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.342.b07-2.el8_6 OpenJDK: class compilation issue (Hotspot, 8281859)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21540

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-07-19 22:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk-headless CVE-2022-21541 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.342.b07-2.el8_6 OpenJDK: improper restriction of MethodHandle.invokeBasic() (Hotspot, 8281866)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21541

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-07-19 22:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk-headless CVE-2022-21626 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.352.b08-2.el8_6 OpenJDK: excessive memory allocation in X.509 certificate parsing (Security, 8286533)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21626

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk-headless CVE-2022-21628 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.352.b08-2.el8_6 OpenJDK: HttpServer no connection count limit (Lightweight HTTP Server, 8286918)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21628

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk-headless CVE-2022-40433 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.392.b08-4.el8

漏洞详情:

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
java-1.8.0-openjdk-headless CVE-2023-21830 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.362.b09-2.el8_7 OpenJDK: improper restrictions in CORBA deserialization (Serialization, 8285021)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21830

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-01-18 00:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk-headless CVE-2023-21939 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: Swing HTML parsing issue (8296832)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21939

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-headless CVE-2023-21954 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: incorrect enqueue of references in garbage collector (8298191)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21954

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-headless CVE-2023-21967 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: certificate validation issue in TLS session negotiation (8298310)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21967

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-headless CVE-2023-22049 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.382.b05-2.el8 OpenJDK: improper handling of slash characters in URI-to-path conversion (8305312)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22049

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-07-18 21:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-headless CVE-2023-22067 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.392.b08-4.el8 OpenJDK: IOR deserialization issue in CORBA (8303384)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22067

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-17 22:15 修改: 2024-02-01 02:09
java-1.8.0-openjdk-headless CVE-2023-22081 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.392.b08-4.el8 OpenJDK: certificate path validation issue during client authentication (8309966)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22081

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-17 22:15 修改: 2024-02-16 15:55
java-1.8.0-openjdk-headless CVE-2023-48161 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.432.b06-2.el8 giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48161

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-11-22 06:15 修改: 2023-11-29 18:48
java-1.8.0-openjdk-headless CVE-2024-20919 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: JVM class file verifier flaw allows unverified bytecode execution (8314295)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20919

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-02-17 02:15 修改: 2024-02-20 19:51
java-1.8.0-openjdk-headless CVE-2024-20921 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: range check loop optimization issue (8314307)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20921

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-02-17 02:15 修改: 2024-02-20 19:51
java-1.8.0-openjdk-headless CVE-2024-20926 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: arbitrary Java code execution in Nashorn (8314284)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20926

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-16 22:15 修改: 2024-02-02 17:35
java-1.8.0-openjdk-headless CVE-2024-20945 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.402.b06-2.el8 OpenJDK: logging of digital signature private keys (8316976)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20945

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-02-17 02:15 修改: 2024-02-20 19:51
java-1.8.0-openjdk-headless CVE-2024-21011 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.412.b08-2.el8 OpenJDK: long Exception message leading to crash (8319851)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21011

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15
java-1.8.0-openjdk-headless CVE-2024-21068 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.412.b08-2.el8 OpenJDK: integer overflow in C1 compiler address generation (8322122)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21068

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15
java-1.8.0-openjdk-headless CVE-2024-21085 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.412.b08-2.el8 OpenJDK: Pack200 excessive memory allocation (8322114)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21085

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15
java-1.8.0-openjdk-headless CVE-2024-21094 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.412.b08-2.el8 OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21094

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-04-16 22:15 修改: 2024-07-03 01:46
java-1.8.0-openjdk-headless CVE-2024-21131 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: potential UTF8 size overflow (8314794)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21131

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-07-19 14:15
java-1.8.0-openjdk-headless CVE-2024-21138 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: Excessive symbol length can lead to infinite loop (8319859)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21138

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-07-19 14:15
java-1.8.0-openjdk-headless CVE-2024-21140 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: Range Check Elimination (RCE) pre-loop limit overflow (8320548)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21140

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-08-01 13:46
java-1.8.0-openjdk-headless CVE-2024-21144 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: Pack200 increase loading time due to improper header validation (8322106)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21144

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-09-18 15:15
java-1.8.0-openjdk-headless CVE-2024-21145 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.422.b05-2.el8 OpenJDK: Out-of-bounds access in 2D image handling (8324559)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21145

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-16 23:15 修改: 2024-09-20 13:46
java-1.8.0-openjdk-headless CVE-2024-21208 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.432.b06-2.el8 JDK: HTTP client improper handling of maxHeaderSize (8328286)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21208

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-15 20:15 修改: 2024-10-31 13:35
java-1.8.0-openjdk-headless CVE-2024-21210 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.432.b06-2.el8 JDK: Array indexing integer overflow (8328544)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21210

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-15 20:15 修改: 2024-10-31 13:35
java-1.8.0-openjdk-headless CVE-2024-21217 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.432.b06-2.el8 JDK: Unbounded allocation leads to out-of-memory error (8331446)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21217

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-15 20:15 修改: 2024-10-18 18:29
java-1.8.0-openjdk-headless CVE-2024-21235 中危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.432.b06-2.el8 JDK: Integer conversion error leads to incorrect range check (8332644)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21235

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-15 20:15 修改: 2024-10-18 18:30
dbus CVE-2022-42011 中危 1:1.12.8-18.el8 1:1.12.8-23.el8_7.1 dbus: dbus-daemon can be crashed by messages with array length inconsistent with element type

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42011

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
krb5-libs CVE-2020-17049 中危 1.18.2-14.el8 Kerberos: delegation constrain bypass in S4U2Proxy

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-17049

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2020-11-11 07:15 修改: 2024-09-10 16:15
krb5-libs CVE-2023-5455 中危 1.18.2-14.el8 ipa: Invalid CSRF protection

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5455

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-01-10 13:15 修改: 2024-09-16 16:15
krb5-libs CVE-2024-37370 中危 1.18.2-14.el8 1.18.2-29.el8_10 krb5: GSS message token handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
krb5-libs CVE-2024-37371 中危 1.18.2-14.el8 1.18.2-29.el8_10 krb5: GSS message token handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libX11 CVE-2022-3554 中危 1.6.8-5.el8 libX11: memory leak in _XimRegisterIMInstantiateCallback() of modules/im/ximcp/imsClbk.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3554

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-17 13:15 修改: 2023-11-07 03:51
libX11 CVE-2023-3138 中危 1.6.8-5.el8 1.6.8-6.el8 libX11: InitExt.c can overwrite unintended portions of the Display structure if the extension request leads to a buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3138

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-28 21:15 修改: 2023-12-08 19:15
libX11 CVE-2023-43785 中危 1.6.8-5.el8 1.6.8-8.el8 libX11: out-of-bounds memory access in _XkbReadKeySyms()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43785

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-10 13:15 修改: 2024-09-16 15:15
libX11 CVE-2023-43786 中危 1.6.8-5.el8 1.6.8-8.el8 libX11: stack exhaustion from infinite recursion in PutSubImage()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43786

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-10 13:15 修改: 2024-09-16 15:15
libX11 CVE-2023-43787 中危 1.6.8-5.el8 1.6.8-8.el8 libX11: integer overflow in XCreateImage() leading to a heap overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43787

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-10 13:15 修改: 2024-09-16 15:15
libX11-common CVE-2022-3554 中危 1.6.8-5.el8 libX11: memory leak in _XimRegisterIMInstantiateCallback() of modules/im/ximcp/imsClbk.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3554

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-17 13:15 修改: 2023-11-07 03:51
libX11-common CVE-2023-3138 中危 1.6.8-5.el8 1.6.8-6.el8 libX11: InitExt.c can overwrite unintended portions of the Display structure if the extension request leads to a buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3138

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-28 21:15 修改: 2023-12-08 19:15
libX11-common CVE-2023-43785 中危 1.6.8-5.el8 1.6.8-8.el8 libX11: out-of-bounds memory access in _XkbReadKeySyms()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43785

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-10 13:15 修改: 2024-09-16 15:15
libX11-common CVE-2023-43786 中危 1.6.8-5.el8 1.6.8-8.el8 libX11: stack exhaustion from infinite recursion in PutSubImage()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43786

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-10 13:15 修改: 2024-09-16 15:15
libX11-common CVE-2023-43787 中危 1.6.8-5.el8 1.6.8-8.el8 libX11: integer overflow in XCreateImage() leading to a heap overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43787

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-10 13:15 修改: 2024-09-16 15:15
libcap CVE-2023-2603 中危 2.48-2.el8 2.48-5.el8_8 libcap: Integer Overflow in _libcap_strdup()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2603

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-06-06 20:15 修改: 2024-10-10 16:32
libcom_err CVE-2022-1304 中危 1.45.6-4.el8 1.45.6-5.el8 e2fsprogs: out-of-bounds read/write via crafted filesystem

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-04-14 21:15 修改: 2023-11-07 03:41
libcurl CVE-2022-22576 中危 7.61.1-22.el8 7.61.1-22.el8_6.3 curl: OAUTH2 bearer bypass in connection re-use

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22576

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-05-26 17:15 修改: 2024-03-27 15:02
libcurl CVE-2022-27774 中危 7.61.1-22.el8 7.61.1-22.el8_6.3 curl: credential leak on redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27774

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libcurl CVE-2022-27776 中危 7.61.1-22.el8 7.61.1-22.el8_6.3 curl: auth/cookie leak on redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27776

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libcurl CVE-2022-27782 中危 7.61.1-22.el8 7.61.1-22.el8_6.3 curl: TLS and SSH connection too eager reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27782

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
libcurl CVE-2022-32206 中危 7.61.1-22.el8 7.61.1-22.el8_6.4 curl: HTTP compression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32206

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
libcurl CVE-2022-32208 中危 7.61.1-22.el8 7.61.1-22.el8_6.4 curl: FTP-KRB bad message verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32208

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
libcurl CVE-2023-23916 中危 7.61.1-22.el8 7.61.1-25.el8_7.3 curl: HTTP multi-header compression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54
libcurl CVE-2023-27535 中危 7.61.1-22.el8 7.61.1-30.el8_8.2 curl: FTP too eager connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47
libcurl CVE-2023-27536 中危 7.61.1-22.el8 7.61.1-30.el8_8.3 curl: GSS delegation too eager connection re-use

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libcurl CVE-2023-28321 中危 7.61.1-22.el8 7.61.1-30.el8_8.3 curl: IDN wildcard match may lead to Improper Cerificate Validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-05-26 21:15 修改: 2023-11-07 04:10
libcurl CVE-2023-46218 中危 7.61.1-22.el8 7.61.1-33.el8_9.5 curl: information disclosure by exploiting a mixed case flaw

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
libcurl CVE-2024-2398 中危 7.61.1-22.el8 7.61.1-34.el8_10.2 curl: HTTP/2 push headers memory-leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
libgcrypt CVE-2019-12904 中危 1.8.5-6.el8 Libgcrypt: physical addresses being available to other processes leads to a flush-and-reload side-channel attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12904

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-06-20 00:15 修改: 2024-08-05 00:15
libgcrypt CVE-2021-40528 中危 1.8.5-6.el8 1.8.5-7.el8_6 libgcrypt: ElGamal implementation allows plaintext recovery

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-40528

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2021-09-06 19:15 修改: 2023-11-07 03:38
libgcrypt CVE-2024-2236 中危 1.8.5-6.el8 libgcrypt: vulnerable to Marvin Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-03-06 22:15 修改: 2024-09-14 04:15
libjpeg-turbo CVE-2019-2201 中危 1.5.3-12.el8 libjpeg-turbo: several integer overflows and subsequent segfaults when attempting to compress/decompress gigapixel images

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-2201

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2019-11-13 18:15 修改: 2023-11-07 03:09
libjpeg-turbo CVE-2020-13790 中危 1.5.3-12.el8 libjpeg-turbo: heap-based buffer over-read in get_rgb_row() in rdppm.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13790

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2020-06-03 19:15 修改: 2023-11-07 03:16
dbus CVE-2022-42012 中危 1:1.12.8-18.el8 1:1.12.8-23.el8_7.1 dbus: `_dbus_marshal_byteswap` doesn't process fds in messages with "foreign" endianness correctly

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42012

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus CVE-2023-34969 中危 1:1.12.8-18.el8 1:1.12.8-24.el8_8.1 dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36
dbus-common CVE-2022-42010 中危 1:1.12.8-18.el8 1:1.12.8-23.el8_7.1 dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42010

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
libnghttp2 CVE-2024-28182 中危 1.33.0-3.el8_2.1 1.33.0-6.el8_10.1 nghttp2: CONTINUATION frames DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28182

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-04-04 15:15 修改: 2024-05-01 18:15
libssh CVE-2023-1667 中危 0.9.6-3.el8 0.9.6-10.el8_8 libssh: NULL pointer dereference during rekeying with algorithm guessing

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1667

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-05-26 18:15 修改: 2023-12-22 10:15
libssh CVE-2023-2283 中危 0.9.6-3.el8 0.9.6-10.el8_8 libssh: authorization bypass in pki_verify_data_signature

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2283

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-05-26 18:15 修改: 2024-02-01 17:15
libssh CVE-2023-48795 中危 0.9.6-3.el8 0.9.6-13.el8_9 ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-12-18 16:15 修改: 2024-05-01 18:15
libssh-config CVE-2023-1667 中危 0.9.6-3.el8 0.9.6-10.el8_8 libssh: NULL pointer dereference during rekeying with algorithm guessing

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1667

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-05-26 18:15 修改: 2023-12-22 10:15
libssh-config CVE-2023-2283 中危 0.9.6-3.el8 0.9.6-10.el8_8 libssh: authorization bypass in pki_verify_data_signature

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2283

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-05-26 18:15 修改: 2024-02-01 17:15
libssh-config CVE-2023-48795 中危 0.9.6-3.el8 0.9.6-13.el8_9 ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-12-18 16:15 修改: 2024-05-01 18:15
libtasn1 CVE-2021-46848 中危 4.13-3.el8 4.13-4.el8_7 libtasn1: Out-of-bound access in ETYPE_OK

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46848

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-24 14:15 修改: 2023-11-07 03:40
libtiff CVE-2017-17095 中危 4.0.9-21.el8 libtiff: Heap-based buffer overflow in tools/pal2rgb.c can lead to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17095

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2017-12-02 06:29 修改: 2018-12-01 11:29
libtiff CVE-2018-15209 中危 4.0.9-21.el8 4.0.9-32.el8_10 libtiff: Heap-based buffer overflow in ChopUpSingleUncompressedStrip in tif_dirread.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15209

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-08-08 04:29 修改: 2020-08-24 17:37
libtiff CVE-2018-16335 中危 4.0.9-21.el8 libtiff: Heap-based buffer overflow in ChopUpSingleUncompressedStrip in tif_dirread.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16335

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-09-02 03:29 修改: 2020-08-24 17:37
libtiff CVE-2022-0561 中危 4.0.9-21.el8 4.0.9-23.el8 libtiff: Denial of Service via crafted TIFF file

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0561

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-02-11 18:15 修改: 2023-11-07 03:41
libtiff CVE-2022-0562 中危 4.0.9-21.el8 4.0.9-23.el8 libtiff: Null source pointer lead to Denial of Service via crafted TIFF file

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0562

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-02-11 18:15 修改: 2023-11-07 03:41
libtiff CVE-2022-0865 中危 4.0.9-21.el8 4.0.9-23.el8 libtiff: reachable assertion

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0865

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-03-10 17:44 修改: 2023-11-07 03:41
libtiff CVE-2022-0924 中危 4.0.9-21.el8 4.0.9-23.el8 libtiff: Out-of-bounds Read error in tiffcp

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0924

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-03-11 18:15 修改: 2023-11-07 03:41
libtiff CVE-2022-1355 中危 4.0.9-21.el8 4.0.9-23.el8 libtiff: stack-buffer-overflow in tiffcp.c in main()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1355

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-08-31 16:15 修改: 2023-02-23 15:52
libtiff CVE-2022-2056 中危 4.0.9-21.el8 4.0.9-26.el8_7 libtiff: division by zero issues in tiffcrop

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2056

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-06-30 16:15 修改: 2023-11-07 03:46
libtiff CVE-2022-2057 中危 4.0.9-21.el8 4.0.9-26.el8_7 libtiff: division by zero issues in tiffcrop

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2057

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-06-30 16:15 修改: 2023-11-07 03:46
libtiff CVE-2022-2058 中危 4.0.9-21.el8 4.0.9-26.el8_7 libtiff: division by zero issues in tiffcrop

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2058

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-06-30 16:15 修改: 2023-11-07 03:46
libtiff CVE-2022-22844 中危 4.0.9-21.el8 4.0.9-23.el8 libtiff: out-of-bounds read in _TIFFmemcpy() in tif_unix.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22844

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-01-10 14:12 修改: 2022-11-16 19:07
libtiff CVE-2022-2519 中危 4.0.9-21.el8 4.0.9-26.el8_7 libtiff: Double free or corruption in rotateImage() function at tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2519

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-08-31 16:15 修改: 2023-02-23 15:57
libtiff CVE-2022-2867 中危 4.0.9-21.el8 4.0.9-26.el8_7 libtiff: uint32_t underflow leads to out of bounds read and write in tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2867

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-08-17 22:15 修改: 2023-11-07 03:47
libtiff CVE-2022-2869 中危 4.0.9-21.el8 4.0.9-26.el8_7 libtiff: tiffcrop.c has uint32_t underflow which leads to out of bounds read and write in extractContigSamples8bits()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2869

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-08-17 22:15 修改: 2023-11-07 03:47
libtiff CVE-2022-2953 中危 4.0.9-21.el8 4.0.9-26.el8_7 libtiff: tiffcrop: heap-buffer-overflow in extractImageSection in tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2953

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-08-29 15:15 修改: 2023-02-23 16:01
libtiff CVE-2022-3570 中危 4.0.9-21.el8 libtiff: heap Buffer overflows in tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3570

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-21 16:15 修改: 2023-02-23 16:02
libtiff CVE-2022-3598 中危 4.0.9-21.el8 libtiff: out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3598

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-21 16:15 修改: 2023-03-31 16:05
libtiff CVE-2022-3599 中危 4.0.9-21.el8 libtiff: out-of-bounds read in writeSingleSection in tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3599

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-21 16:15 修改: 2023-02-23 16:06
libtiff CVE-2022-3627 中危 4.0.9-21.el8 4.0.9-27.el8 libtiff: out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3627

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-21 16:15 修改: 2023-02-23 16:07
libtiff CVE-2022-3970 中危 4.0.9-21.el8 4.0.9-27.el8 libtiff: integer overflow in function TIFFReadRGBATileExt of the file

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3970

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-11-13 08:15 修改: 2023-11-17 19:04
libtiff CVE-2022-40090 中危 4.0.9-21.el8 libtiff: infinite loop via a crafted TIFF file

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40090

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-08-22 19:16 修改: 2023-08-26 02:13
libtiff CVE-2022-4645 中危 4.0.9-21.el8 4.0.9-31.el8 libtiff: out-of-bounds read in tiffcp in tools/tiffcp.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4645

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-03-03 16:15 修改: 2023-11-07 03:58
libtiff CVE-2022-48281 中危 4.0.9-21.el8 4.0.9-28.el8_8 libtiff: heap-based buffer overflow in processCropSelections() in tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48281

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-01-23 03:15 修改: 2023-05-30 06:16
libtiff CVE-2023-0795 中危 4.0.9-21.el8 libtiff: out-of-bounds read in extractContigSamplesShifted16bits() in tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0795

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-13 23:15 修改: 2023-05-30 06:16
libtiff CVE-2023-0796 中危 4.0.9-21.el8 libtiff: out-of-bounds read in extractContigSamplesShifted24bits() in tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0796

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-13 23:15 修改: 2023-05-30 06:16
libtiff CVE-2023-0797 中危 4.0.9-21.el8 libtiff: out-of-bounds read in _TIFFmemcpy() in libtiff/tif_unix.c when called by functions in tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0797

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-13 23:15 修改: 2023-05-30 06:16
libtiff CVE-2023-0798 中危 4.0.9-21.el8 libtiff: out-of-bounds read in extractContigSamplesShifted8bits() in tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0798

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-13 23:15 修改: 2023-05-30 06:16
libtiff CVE-2023-0799 中危 4.0.9-21.el8 libtiff: use-after-free in extractContigSamplesShifted32bits() in tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0799

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-13 23:15 修改: 2023-05-30 06:16
libtiff CVE-2023-0800 中危 4.0.9-21.el8 4.0.9-29.el8_8 libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0800

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-13 23:15 修改: 2023-05-30 06:16
libtiff CVE-2023-0801 中危 4.0.9-21.el8 4.0.9-29.el8_8 libtiff: out-of-bounds write in _TIFFmemcpy() in libtiff/tif_unix.c when called by functions in tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0801

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-13 23:15 修改: 2023-05-30 06:16
libtiff CVE-2023-0802 中危 4.0.9-21.el8 4.0.9-29.el8_8 libtiff: out-of-bounds write in extractContigSamplesShifted32bits() in tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0802

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-13 23:15 修改: 2023-05-30 06:16
libtiff CVE-2023-0803 中危 4.0.9-21.el8 4.0.9-29.el8_8 libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0803

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-13 23:15 修改: 2023-05-30 06:16
libtiff CVE-2023-0804 中危 4.0.9-21.el8 4.0.9-29.el8_8 libtiff: out-of-bounds write in extractContigSamplesShifted24bits() in tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0804

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-13 23:15 修改: 2023-11-07 04:01
libtiff CVE-2023-25433 中危 4.0.9-21.el8 4.0.9-32.el8_10 libtiff: Buffer Overflow via /libtiff/tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25433

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-29 20:15 修改: 2023-08-01 02:15
libtiff CVE-2023-25434 中危 4.0.9-21.el8 libtiff: heap-buffer overflow via extractContigSamplesBytes() at /libtiff/tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25434

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-14 20:15 修改: 2023-06-23 16:25
libtiff CVE-2023-25435 中危 4.0.9-21.el8 libtiff: tiffcrop: heap-buffer-overflow in extractContigSamplesShifted8bits() in tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25435

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-21 20:15 修改: 2023-06-28 18:51
libtiff CVE-2023-26965 中危 4.0.9-21.el8 libtiff: heap-based use after free via a crafted TIFF image in loadImage() in tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26965

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-14 21:15 修改: 2023-08-01 02:15
libtiff CVE-2023-26966 中危 4.0.9-21.el8 libtiff: Buffer Overflow in uv_encode()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26966

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-29 20:15 修改: 2023-08-01 02:15
libtiff CVE-2023-30086 中危 4.0.9-21.el8 libtiff: Heap buffer overflow in tiffcp() at tiffcp.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-30086

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-05-09 16:15 修改: 2023-06-16 15:15
libtiff CVE-2023-30774 中危 4.0.9-21.el8 libtiff: heap buffer overflow issues related to TIFFTAG_INKNAMES and related TIFFTAG_NUMBEROFINKS value

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-30774

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-05-19 15:15 修改: 2024-01-09 02:51
libtiff CVE-2023-30775 中危 4.0.9-21.el8 libtiff: Heap buffer overflow in extractContigSamples32bits, tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-30775

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-05-19 15:15 修改: 2023-07-03 16:15
libtiff CVE-2023-3164 中危 4.0.9-21.el8 libtiff: heap-buffer-overflow in extractImageSection()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3164

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-11-02 12:15 修改: 2024-03-08 19:38
libtiff CVE-2023-3316 中危 4.0.9-21.el8 libtiff: tiffcrop: null pointer dereference in TIFFClose()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3316

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-19 12:15 修改: 2023-08-01 02:15
libtiff CVE-2023-3576 中危 4.0.9-21.el8 libtiff: memory leak in tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3576

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-04 19:15 修改: 2024-09-16 13:15
libtiff CVE-2023-3618 中危 4.0.9-21.el8 libtiff: segmentation fault in Fax3Encode in libtiff/tif_fax3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3618

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-07-12 15:15 修改: 2024-03-23 11:15
libtiff CVE-2023-40745 中危 4.0.9-21.el8 libtiff: integer overflow in tiffcp.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40745

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-05 19:15 修改: 2024-09-16 17:15
libtiff CVE-2023-41175 中危 4.0.9-21.el8 libtiff: potential integer overflow in raw2tiff.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-41175

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-05 19:15 修改: 2024-04-30 15:15
libtiff CVE-2023-52355 中危 4.0.9-21.el8 libtiff: TIFFRasterScanlineSize64 produce too-big size and could cause OOM

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52355

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-25 20:15 修改: 2024-05-17 17:37
libtiff CVE-2023-52356 中危 4.0.9-21.el8 4.0.9-32.el8_10 libtiff: Segment fault in libtiff in TIFFReadRGBATileExt() leading to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52356

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-25 20:15 修改: 2024-09-16 20:15
libtiff CVE-2023-6277 中危 4.0.9-21.el8 libtiff: Out-of-memory in TIFFOpen via a craft file

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6277

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-11-24 19:15 修改: 2024-09-17 01:15
libtiff CVE-2024-7006 中危 4.0.9-21.el8 libtiff: NULL pointer dereference in tif_dirinfo.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7006

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-08-12 13:38 修改: 2024-10-11 14:39
libxml2 CVE-2016-3709 中危 2.9.7-13.el8 2.9.7-15.el8 libxml2: Incorrect server side include parsing can lead to XSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-3709

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-28 17:15 修改: 2022-12-07 16:39
libxml2 CVE-2022-29824 中危 2.9.7-13.el8 2.9.7-13.el8_6.1 libxml2: integer overflows in xmlBuf and xmlBuffer lead to out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29824

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-05-03 03:15 修改: 2023-11-07 03:46
libxml2 CVE-2022-40303 中危 2.9.7-13.el8 2.9.7-15.el8_7.1 libxml2: integer overflows with XML_PARSE_HUGE

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40303

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-11-23 00:15 修改: 2023-11-07 03:52
libxml2 CVE-2022-40304 中危 2.9.7-13.el8 2.9.7-15.el8_7.1 libxml2: dict corruption caused by entity reference cycles

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40304

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-11-23 18:15 修改: 2023-11-07 03:52
libxml2 CVE-2023-28484 中危 2.9.7-13.el8 2.9.7-16.el8_8.1 libxml2: NULL dereference in xmlSchemaFixupComplexType

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28484

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-04-24 21:15 修改: 2024-02-01 17:15
libxml2 CVE-2023-29469 中危 2.9.7-13.el8 2.9.7-16.el8_8.1 libxml2: Hashing of empty dict strings isn't deterministic

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29469

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-04-24 21:15 修改: 2023-06-01 14:15
libxml2 CVE-2023-39615 中危 2.9.7-13.el8 2.9.7-18.el8_9 libxml2: crafted xml can cause global buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39615

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-29 17:15 修改: 2024-08-02 19:15
libxml2 CVE-2024-25062 中危 2.9.7-13.el8 2.9.7-18.el8_10.1 libxml2: use-after-free in XMLReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25062

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-02-04 16:15 修改: 2024-02-13 00:40
libyaml CVE-2024-35325 中危 0.1.7-5.el8 libyaml: double-free in yaml_event_delete in /src/libyaml/src/api.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35325

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-06-13 17:15 修改: 2024-08-28 16:15
lua CVE-2020-15945 中危 5.3.4-12.el8 lua: segmentation fault in changedline in ldebug.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15945

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2020-07-24 21:15 修改: 2023-04-20 18:39
lua-libs CVE-2020-15945 中危 5.3.4-12.el8 lua: segmentation fault in changedline in ldebug.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15945

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2020-07-24 21:15 修改: 2023-04-20 18:39
lz4-libs CVE-2019-17543 中危 1.8.3-3.el8_4 lz4: heap-based buffer overflow in LZ4_write32

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17543

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-10-14 02:15 修改: 2023-11-07 03:06
ncurses-base CVE-2023-29491 中危 6.1-9.20180224.el8 6.1-9.20180224.el8_8.1 ncurses: Local users can trigger security-relevant memory corruption via malformed data

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
ncurses-libs CVE-2023-29491 中危 6.1-9.20180224.el8 6.1-9.20180224.el8_8.1 ncurses: Local users can trigger security-relevant memory corruption via malformed data

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
dbus-common CVE-2022-42011 中危 1:1.12.8-18.el8 1:1.12.8-23.el8_7.1 dbus: dbus-daemon can be crashed by messages with array length inconsistent with element type

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42011

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
nss CVE-2023-5388 中危 3.67.0-7.el8_5 3.90.0-4.el8_9 nss: timing attack against RSA decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5388

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-03-19 12:15 修改: 2024-03-25 17:15
nss CVE-2023-6135 中危 3.67.0-7.el8_5 3.90.0-6.el8_9 nss: vulnerable to Minerva side-channel information leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6135

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-12-19 14:15 修改: 2024-01-07 11:15
nss CVE-2024-6602 中危 3.67.0-7.el8_5 Mozilla: Memory corruption in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6602

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-09 15:15 修改: 2024-07-16 18:15
dbus-common CVE-2022-42012 中危 1:1.12.8-18.el8 1:1.12.8-23.el8_7.1 dbus: `_dbus_marshal_byteswap` doesn't process fds in messages with "foreign" endianness correctly

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42012

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
nss-softokn CVE-2023-5388 中危 3.67.0-7.el8_5 3.90.0-4.el8_9 nss: timing attack against RSA decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5388

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-03-19 12:15 修改: 2024-03-25 17:15
nss-softokn CVE-2023-6135 中危 3.67.0-7.el8_5 3.90.0-6.el8_9 nss: vulnerable to Minerva side-channel information leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6135

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-12-19 14:15 修改: 2024-01-07 11:15
nss-softokn CVE-2024-6602 中危 3.67.0-7.el8_5 Mozilla: Memory corruption in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6602

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-09 15:15 修改: 2024-07-16 18:15
dbus-common CVE-2023-34969 中危 1:1.12.8-18.el8 1:1.12.8-24.el8_8.1 dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36
nss-softokn-freebl CVE-2023-5388 中危 3.67.0-7.el8_5 3.90.0-4.el8_9 nss: timing attack against RSA decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5388

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-03-19 12:15 修改: 2024-03-25 17:15
nss-softokn-freebl CVE-2023-6135 中危 3.67.0-7.el8_5 3.90.0-6.el8_9 nss: vulnerable to Minerva side-channel information leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6135

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-12-19 14:15 修改: 2024-01-07 11:15
nss-softokn-freebl CVE-2024-6602 中危 3.67.0-7.el8_5 Mozilla: Memory corruption in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6602

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-09 15:15 修改: 2024-07-16 18:15
dbus-daemon CVE-2022-42010 中危 1:1.12.8-18.el8 1:1.12.8-23.el8_7.1 dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42010

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
nss-sysinit CVE-2023-5388 中危 3.67.0-7.el8_5 3.90.0-4.el8_9 nss: timing attack against RSA decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5388

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-03-19 12:15 修改: 2024-03-25 17:15
nss-sysinit CVE-2023-6135 中危 3.67.0-7.el8_5 3.90.0-6.el8_9 nss: vulnerable to Minerva side-channel information leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6135

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-12-19 14:15 修改: 2024-01-07 11:15
nss-sysinit CVE-2024-6602 中危 3.67.0-7.el8_5 Mozilla: Memory corruption in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6602

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-09 15:15 修改: 2024-07-16 18:15
dbus-daemon CVE-2022-42011 中危 1:1.12.8-18.el8 1:1.12.8-23.el8_7.1 dbus: dbus-daemon can be crashed by messages with array length inconsistent with element type

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42011

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
nss-util CVE-2023-5388 中危 3.67.0-7.el8_5 3.90.0-4.el8_9 nss: timing attack against RSA decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5388

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-03-19 12:15 修改: 2024-03-25 17:15
nss-util CVE-2023-6135 中危 3.67.0-7.el8_5 3.90.0-6.el8_9 nss: vulnerable to Minerva side-channel information leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6135

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-12-19 14:15 修改: 2024-01-07 11:15
nss-util CVE-2024-6602 中危 3.67.0-7.el8_5 Mozilla: Memory corruption in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6602

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-09 15:15 修改: 2024-07-16 18:15
dbus-daemon CVE-2022-42012 中危 1:1.12.8-18.el8 1:1.12.8-23.el8_7.1 dbus: `_dbus_marshal_byteswap` doesn't process fds in messages with "foreign" endianness correctly

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42012

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
openssl-libs CVE-2022-1292 中危 1:1.1.1k-6.el8_5 1:1.1.1k-7.el8_6 openssl: c_rehash script allows command injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1292

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-05-03 16:15 修改: 2023-11-07 03:41
openssl-libs CVE-2022-2068 中危 1:1.1.1k-6.el8_5 1:1.1.1k-7.el8_6 openssl: the c_rehash script allows command injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2068

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-21 15:15 修改: 2023-11-07 03:46
openssl-libs CVE-2022-2097 中危 1:1.1.1k-6.el8_5 1:1.1.1k-7.el8_6 openssl: AES OCB fails to encrypt some bytes

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2097

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-05 11:15 修改: 2024-06-21 19:15
openssl-libs CVE-2022-4304 中危 1:1.1.1k-6.el8_5 1:1.1.1k-9.el8_7 openssl: timing attack in RSA Decryption implementation

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl-libs CVE-2022-4450 中危 1:1.1.1k-6.el8_5 1:1.1.1k-9.el8_7 openssl: double free after calling PEM_read_bio_ex

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl-libs CVE-2023-0215 中危 1:1.1.1k-6.el8_5 1:1.1.1k-9.el8_7 openssl: use-after-free following BIO_new_NDEF

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
pam CVE-2024-10041 中危 1.3.1-16.el8 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-10-23 14:15 修改: 2024-10-23 15:12
pam CVE-2024-22365 中危 1.3.1-16.el8 1.3.1-33.el8 pam: allowing unprivileged user to block another user namespace

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
pcre2 CVE-2022-1586 中危 10.32-2.el8 10.32-3.el8_6 pcre2: Out-of-bounds read in compile_xclass_matchingpath in pcre2_jit_compile.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1586

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-05-16 21:15 修改: 2023-11-07 03:42
pixman CVE-2022-44638 中危 0.38.4-2.el8 0.38.4-3.el8_9 pixman: Integer overflow in pixman_sample_floor_y leading to heap out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-44638

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-11-03 06:15 修改: 2023-11-07 03:54
dbus-daemon CVE-2023-34969 中危 1:1.12.8-18.el8 1:1.12.8-24.el8_8.1 dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36
dbus-libs CVE-2022-42010 中危 1:1.12.8-18.el8 1:1.12.8-23.el8_7.1 dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42010

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus-libs CVE-2022-42011 中危 1:1.12.8-18.el8 1:1.12.8-23.el8_7.1 dbus: dbus-daemon can be crashed by messages with array length inconsistent with element type

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42011

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
platform-python CVE-2007-4559 中危 3.6.8-45.el8 3.6.8-56.el8_9 python: tarfile module directory traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2007-4559

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2007-08-28 01:17 修改: 2024-03-23 03:15
platform-python CVE-2015-20107 中危 3.6.8-45.el8 3.6.8-47.el8_6 python: mailcap: findmatch() function does not sanitize the second argument

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-20107

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-04-13 16:15 修改: 2023-11-07 02:25
platform-python CVE-2020-10735 中危 3.6.8-45.el8 3.6.8-48.el8_7.1 python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15
platform-python CVE-2021-28861 中危 3.6.8-45.el8 3.6.8-48.el8_7.1 python: open redirection vulnerability in lib/http/server.py may lead to information disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28861

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-23 01:15 修改: 2024-08-03 22:15
platform-python CVE-2022-0391 中危 3.6.8-45.el8 3.6.8-47.el8_6 python: urllib.parse does not sanitize URLs containing ASCII newline and tabs

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0391

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-02-09 23:15 修改: 2023-11-07 03:41
platform-python CVE-2022-45061 中危 3.6.8-45.el8 3.6.8-48.el8_7.1 python: CPU denial of service via inefficient IDNA decoder

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45061

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-11-09 07:15 修改: 2023-11-07 03:54
platform-python CVE-2022-48560 中危 3.6.8-45.el8 3.6.8-56.el8_9.2 python: use after free in heappushpop() of heapq module

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48560

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:16 修改: 2023-12-08 03:15
platform-python CVE-2022-48564 中危 3.6.8-45.el8 3.6.8-56.el8_9.2 python: DoS when processing malformed Apple Property List files in binary format

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48564

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:16 修改: 2023-12-15 15:56
platform-python CVE-2023-27043 中危 3.6.8-45.el8 3.6.8-56.el8_9.3 python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
platform-python CVE-2024-0450 中危 3.6.8-45.el8 3.6.8-62.el8_10 python: The zipfile module is vulnerable to zip-bombs leading to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
platform-python CVE-2024-6232 中危 3.6.8-45.el8 3.6.8-67.el8_10 python: cpython: tarfile: ReDos via excessive backtracking while parsing header values

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
platform-python CVE-2024-6923 中危 3.6.8-45.el8 3.6.8-67.el8_10 cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
platform-python CVE-2024-9287 中危 3.6.8-45.el8 python: Virtual environment (venv) activation scripts don't quote paths

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-10-22 17:15 修改: 2024-10-30 16:15
dbus-libs CVE-2022-42012 中危 1:1.12.8-18.el8 1:1.12.8-23.el8_7.1 dbus: `_dbus_marshal_byteswap` doesn't process fds in messages with "foreign" endianness correctly

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42012

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
platform-python-setuptools CVE-2022-40897 中危 39.2.0-6.el8 39.2.0-6.el8_7.1 pypa-setuptools: Regular Expression Denial of Service (ReDoS) in package_index.py

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40897

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-12-23 00:15 修改: 2024-10-29 15:35
dbus-libs CVE-2023-34969 中危 1:1.12.8-18.el8 1:1.12.8-24.el8_8.1 dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36
python3-idna CVE-2024-3651 中危 2.5-5.el8 2.5-7.el8_10 python-idna: potential DoS via resource consumption via specially crafted inputs to idna.encode()

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-3651

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-07-07 18:15 修改: 2024-07-11 14:58
dbus-tools CVE-2022-42010 中危 1:1.12.8-18.el8 1:1.12.8-23.el8_7.1 dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42010

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus-tools CVE-2022-42011 中危 1:1.12.8-18.el8 1:1.12.8-23.el8_7.1 dbus: dbus-daemon can be crashed by messages with array length inconsistent with element type

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42011

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
dbus-tools CVE-2022-42012 中危 1:1.12.8-18.el8 1:1.12.8-23.el8_7.1 dbus: `_dbus_marshal_byteswap` doesn't process fds in messages with "foreign" endianness correctly

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42012

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49
python3-libs CVE-2007-4559 中危 3.6.8-45.el8 3.6.8-56.el8_9 python: tarfile module directory traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2007-4559

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2007-08-28 01:17 修改: 2024-03-23 03:15
python3-libs CVE-2015-20107 中危 3.6.8-45.el8 3.6.8-47.el8_6 python: mailcap: findmatch() function does not sanitize the second argument

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-20107

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-04-13 16:15 修改: 2023-11-07 02:25
python3-libs CVE-2020-10735 中危 3.6.8-45.el8 3.6.8-48.el8_7.1 python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15
python3-libs CVE-2021-28861 中危 3.6.8-45.el8 3.6.8-48.el8_7.1 python: open redirection vulnerability in lib/http/server.py may lead to information disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28861

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-23 01:15 修改: 2024-08-03 22:15
python3-libs CVE-2022-0391 中危 3.6.8-45.el8 3.6.8-47.el8_6 python: urllib.parse does not sanitize URLs containing ASCII newline and tabs

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0391

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-02-09 23:15 修改: 2023-11-07 03:41
python3-libs CVE-2022-45061 中危 3.6.8-45.el8 3.6.8-48.el8_7.1 python: CPU denial of service via inefficient IDNA decoder

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45061

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-11-09 07:15 修改: 2023-11-07 03:54
python3-libs CVE-2022-48560 中危 3.6.8-45.el8 3.6.8-56.el8_9.2 python: use after free in heappushpop() of heapq module

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48560

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:16 修改: 2023-12-08 03:15
python3-libs CVE-2022-48564 中危 3.6.8-45.el8 3.6.8-56.el8_9.2 python: DoS when processing malformed Apple Property List files in binary format

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48564

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:16 修改: 2023-12-15 15:56
python3-libs CVE-2023-27043 中危 3.6.8-45.el8 3.6.8-56.el8_9.3 python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
python3-libs CVE-2024-0450 中危 3.6.8-45.el8 3.6.8-62.el8_10 python: The zipfile module is vulnerable to zip-bombs leading to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python3-libs CVE-2024-6232 中危 3.6.8-45.el8 3.6.8-67.el8_10 python: cpython: tarfile: ReDos via excessive backtracking while parsing header values

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
python3-libs CVE-2024-6923 中危 3.6.8-45.el8 3.6.8-67.el8_10 cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
python3-libs CVE-2024-9287 中危 3.6.8-45.el8 python: Virtual environment (venv) activation scripts don't quote paths

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-10-22 17:15 修改: 2024-10-30 16:15
python3-libxml2 CVE-2016-3709 中危 2.9.7-13.el8 2.9.7-15.el8 libxml2: Incorrect server side include parsing can lead to XSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-3709

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-28 17:15 修改: 2022-12-07 16:39
python3-libxml2 CVE-2022-29824 中危 2.9.7-13.el8 2.9.7-13.el8_6.1 libxml2: integer overflows in xmlBuf and xmlBuffer lead to out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29824

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-05-03 03:15 修改: 2023-11-07 03:46
python3-libxml2 CVE-2022-40303 中危 2.9.7-13.el8 2.9.7-15.el8_7.1 libxml2: integer overflows with XML_PARSE_HUGE

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40303

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-11-23 00:15 修改: 2023-11-07 03:52
python3-libxml2 CVE-2022-40304 中危 2.9.7-13.el8 2.9.7-15.el8_7.1 libxml2: dict corruption caused by entity reference cycles

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40304

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-11-23 18:15 修改: 2023-11-07 03:52
python3-libxml2 CVE-2023-28484 中危 2.9.7-13.el8 2.9.7-16.el8_8.1 libxml2: NULL dereference in xmlSchemaFixupComplexType

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28484

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-04-24 21:15 修改: 2024-02-01 17:15
python3-libxml2 CVE-2023-29469 中危 2.9.7-13.el8 2.9.7-16.el8_8.1 libxml2: Hashing of empty dict strings isn't deterministic

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29469

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-04-24 21:15 修改: 2023-06-01 14:15
python3-libxml2 CVE-2023-39615 中危 2.9.7-13.el8 2.9.7-18.el8_9 libxml2: crafted xml can cause global buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39615

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-29 17:15 修改: 2024-08-02 19:15
python3-libxml2 CVE-2024-25062 中危 2.9.7-13.el8 2.9.7-18.el8_10.1 libxml2: use-after-free in XMLReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25062

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-02-04 16:15 修改: 2024-02-13 00:40
python3-pip-wheel CVE-2007-4559 中危 9.0.3-22.el8 9.0.3-23.el8 python: tarfile module directory traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2007-4559

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2007-08-28 01:17 修改: 2024-03-23 03:15
python3-requests CVE-2023-32681 中危 2.20.0-2.1.el8_1 2.20.0-3.el8_8 python-requests: Unintended leak of Proxy-Authorization header

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32681

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-05-26 18:15 修改: 2023-09-17 09:15
python3-rpm CVE-2021-35937 中危 4.14.3-23.el8 4.14.3-28.el8_9 rpm: TOCTOU race in checks for unsafe symlinks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:36
python3-rpm CVE-2021-35938 中危 4.14.3-23.el8 4.14.3-28.el8_9 rpm: races with chown/chmod/capabilities calls during installation

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-25 20:15 修改: 2022-11-29 18:06
python3-rpm CVE-2021-35939 中危 4.14.3-23.el8 4.14.3-28.el8_9 rpm: checks for unsafe symlinks are not performed for intermediary directories

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-26 16:15 修改: 2023-02-04 01:16
dbus-tools CVE-2023-34969 中危 1:1.12.8-18.el8 1:1.12.8-24.el8_8.1 dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36
python3-setuptools-wheel CVE-2022-40897 中危 39.2.0-6.el8 39.2.0-6.el8_7.1 pypa-setuptools: Regular Expression Denial of Service (ReDoS) in package_index.py

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40897

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-12-23 00:15 修改: 2024-10-29 15:35
dmidecode CVE-2023-30630 中危 1:3.3-4.el8 1:3.3-4.el8_8.1 dmidecode: dump-bin to overwrite a local file

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-30630

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-04-13 16:15 修改: 2023-09-28 17:54
avahi-libs CVE-2023-1981 中危 0.7-20.el8 0.7-21.el8 avahi: avahi-daemon can be crashed via DBus

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1981

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-05-26 18:15 修改: 2023-06-02 19:06
python3-urllib3 CVE-2023-43804 中危 1.24.2-5.el8 1.24.2-5.el8_9.2 python-urllib3: Cookie request header isn't stripped during cross-origin redirects

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43804

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-10-04 17:15 修改: 2024-02-01 00:55
python3-urllib3 CVE-2023-45803 中危 1.24.2-5.el8 1.24.2-5.el8_9.2 urllib3: Request body not stripped after redirect from 303 status changes request method to GET

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45803

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-10-17 20:15 修改: 2023-11-03 22:15
python3-urllib3 CVE-2024-37891 中危 1.24.2-5.el8 1.24.2-8.el8_10 urllib3: proxy-authorization request header is not stripped during cross-origin redirects

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37891

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-06-17 20:15 修改: 2024-06-20 12:44
rpm CVE-2021-35937 中危 4.14.3-23.el8 4.14.3-28.el8_9 rpm: TOCTOU race in checks for unsafe symlinks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:36
rpm CVE-2021-35938 中危 4.14.3-23.el8 4.14.3-28.el8_9 rpm: races with chown/chmod/capabilities calls during installation

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-25 20:15 修改: 2022-11-29 18:06
rpm CVE-2021-35939 中危 4.14.3-23.el8 4.14.3-28.el8_9 rpm: checks for unsafe symlinks are not performed for intermediary directories

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-26 16:15 修改: 2023-02-04 01:16
rpm-build-libs CVE-2021-35937 中危 4.14.3-23.el8 4.14.3-28.el8_9 rpm: TOCTOU race in checks for unsafe symlinks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:36
rpm-build-libs CVE-2021-35938 中危 4.14.3-23.el8 4.14.3-28.el8_9 rpm: races with chown/chmod/capabilities calls during installation

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-25 20:15 修改: 2022-11-29 18:06
rpm-build-libs CVE-2021-35939 中危 4.14.3-23.el8 4.14.3-28.el8_9 rpm: checks for unsafe symlinks are not performed for intermediary directories

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-26 16:15 修改: 2023-02-04 01:16
rpm-libs CVE-2021-35937 中危 4.14.3-23.el8 4.14.3-28.el8_9 rpm: TOCTOU race in checks for unsafe symlinks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:36
rpm-libs CVE-2021-35938 中危 4.14.3-23.el8 4.14.3-28.el8_9 rpm: races with chown/chmod/capabilities calls during installation

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-25 20:15 修改: 2022-11-29 18:06
rpm-libs CVE-2021-35939 中危 4.14.3-23.el8 4.14.3-28.el8_9 rpm: checks for unsafe symlinks are not performed for intermediary directories

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-26 16:15 修改: 2023-02-04 01:16
sqlite-libs CVE-2020-24736 中危 3.26.0-15.el8 3.26.0-18.el8_8 sqlite: Crash due to misuse of window functions.

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24736

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-04-11 18:15 修改: 2023-05-26 20:15
sqlite-libs CVE-2020-35527 中危 3.26.0-15.el8 3.26.0-16.el8_6 sqlite: Out of bounds access during table rename

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35527

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-01 18:15 修改: 2022-12-08 22:29
sqlite-libs CVE-2022-35737 中危 3.26.0-15.el8 3.26.0-17.el8_7 sqlite: an array-bounds overflow if billions of bytes are used in a string argument to a C API

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35737

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-03 06:15 修改: 2024-03-27 16:05
sqlite-libs CVE-2023-7104 中危 3.26.0-15.el8 3.26.0-19.el8_9 sqlite: heap-buffer-overflow at sessionfuzz

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7104

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-12-29 10:15 修改: 2024-05-17 02:34
avahi-libs CVE-2023-38469 中危 0.7-20.el8 0.7-21.el8_9.1 avahi: Reachable assertion in avahi_dns_packet_append_record

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38469

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
expat CVE-2022-23990 中危 2.2.5-8.el8 expat: integer overflow in the doProlog function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23990

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-01-26 19:15 修改: 2023-11-07 03:44
expat CVE-2022-25313 中危 2.2.5-8.el8 2.2.5-8.el8_6.2 expat: Stack exhaustion in doctype parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25313

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-02-18 05:15 修改: 2023-11-07 03:44
systemd CVE-2018-20839 中危 239-58.el8 systemd: mishandling of the current keyboard mode check leading to passwords being disclosed in cleartext to attacker

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20839

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-05-17 04:29 修改: 2024-10-24 17:34
systemd CVE-2022-3821 中危 239-58.el8 239-68.el8_7.1 systemd: buffer overrun in format_timespan() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3821

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-11-08 22:15 修改: 2023-11-07 03:51
systemd CVE-2022-4415 中危 239-58.el8 239-68.el8_7.4 systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4415

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-01-11 15:15 修改: 2023-02-02 16:19
systemd CVE-2023-26604 中危 239-58.el8 239-74.el8_8.2 systemd: privilege escalation via the less pager

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09
systemd CVE-2023-7008 中危 239-58.el8 239-82.el8 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-12-23 13:15 修改: 2024-09-16 17:16
expat CVE-2022-25314 中危 2.2.5-8.el8 2.2.5-8.el8_6.2 expat: Integer overflow in copyString()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25314

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-02-18 05:15 修改: 2023-11-07 03:44
systemd-libs CVE-2018-20839 中危 239-58.el8 systemd: mishandling of the current keyboard mode check leading to passwords being disclosed in cleartext to attacker

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20839

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-05-17 04:29 修改: 2024-10-24 17:34
systemd-libs CVE-2022-3821 中危 239-58.el8 239-68.el8_7.1 systemd: buffer overrun in format_timespan() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3821

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-11-08 22:15 修改: 2023-11-07 03:51
systemd-libs CVE-2022-4415 中危 239-58.el8 239-68.el8_7.4 systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4415

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-01-11 15:15 修改: 2023-02-02 16:19
systemd-libs CVE-2023-26604 中危 239-58.el8 239-74.el8_8.2 systemd: privilege escalation via the less pager

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09
systemd-libs CVE-2023-7008 中危 239-58.el8 239-82.el8 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-12-23 13:15 修改: 2024-09-16 17:16
expat CVE-2022-43680 中危 2.2.5-8.el8 2.2.5-10.el8_7.1 expat: use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43680

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-24 14:15 修改: 2024-01-21 02:08
systemd-pam CVE-2018-20839 中危 239-58.el8 systemd: mishandling of the current keyboard mode check leading to passwords being disclosed in cleartext to attacker

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20839

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-05-17 04:29 修改: 2024-10-24 17:34
systemd-pam CVE-2022-3821 中危 239-58.el8 239-68.el8_7.1 systemd: buffer overrun in format_timespan() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3821

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-11-08 22:15 修改: 2023-11-07 03:51
systemd-pam CVE-2022-4415 中危 239-58.el8 239-68.el8_7.4 systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4415

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-01-11 15:15 修改: 2023-02-02 16:19
systemd-pam CVE-2023-26604 中危 239-58.el8 239-74.el8_8.2 systemd: privilege escalation via the less pager

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09
systemd-pam CVE-2023-7008 中危 239-58.el8 239-82.el8 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-12-23 13:15 修改: 2024-09-16 17:16
tar CVE-2005-2541 中危 2:1.30-5.el8 tar: does not properly warn the user when extracting setuid or setgid files

漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2005-08-10 04:00 修改: 2023-11-07 01:57
tar CVE-2022-48303 中危 2:1.30-5.el8 2:1.30-6.el8_7.1 tar: heap buffer overflow at from_header() in list.c via specially crafted checksum

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48303

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-01-30 04:15 修改: 2023-05-30 17:16
tpm2-tss CVE-2023-22745 中危 2.3.2-4.el8 2.3.2-5.el8 tpm2-tss: Buffer Overlow in TSS2_RC_Decode

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22745

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-01-19 23:15 修改: 2023-01-26 20:25
vim-minimal CVE-2022-1621 中危 2:8.0.1763-16.el8_5.13 2:8.0.1763-19.el8_6.2 vim: heap buffer overflow in vim_strncpy

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1621

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-05-10 14:15 修改: 2023-11-07 03:42
vim-minimal CVE-2022-1629 中危 2:8.0.1763-16.el8_5.13 2:8.0.1763-19.el8_6.2 vim: buffer over-read in function find_next_quote

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1629

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-05-10 14:15 修改: 2023-11-07 03:42
vim-minimal CVE-2022-1785 中危 2:8.0.1763-16.el8_5.13 2:8.0.1763-19.el8_6.4 vim: Out-of-bounds Write

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1785

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-05-19 13:15 修改: 2023-05-03 12:15
vim-minimal CVE-2022-1897 中危 2:8.0.1763-16.el8_5.13 2:8.0.1763-19.el8_6.4 vim: out-of-bounds write in vim_regsub_both() in regexp.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1897

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-05-27 15:15 修改: 2023-11-07 03:42
vim-minimal CVE-2022-1927 中危 2:8.0.1763-16.el8_5.13 2:8.0.1763-19.el8_6.4 vim: buffer over-read in utf_ptr2char() in mbyte.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1927

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-05-29 14:15 修改: 2023-11-07 03:42
vim-minimal CVE-2024-43790 中危 2:8.0.1763-16.el8_5.13 vim: Out of bounds read when performing a search command

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43790

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-08-22 22:15 修改: 2024-08-23 16:18
expat CVE-2023-52425 中危 2.2.5-8.el8 2.2.5-11.el8_9.1 expat: parsing large tokens can trigger a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52425

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-02-04 20:15 修改: 2024-08-26 20:35
zlib CVE-2022-37434 中危 1.2.11-18.el8_5 1.2.11-19.el8_6 zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37434

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-05 07:15 修改: 2023-07-19 00:56
libcap CVE-2023-2602 低危 2.48-2.el8 2.48-5.el8_8 libcap: Memory Leak on pthread_create() Error

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2602

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-06-06 20:15 修改: 2023-11-30 05:15
jasper-libs CVE-2018-19543 低危 2.0.14-5.el8 jasper: heap-based buffer over-read in jp2_decode() in jp2_dec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19543

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-11-26 03:29 修改: 2020-09-25 12:15
ncurses-base CVE-2018-19211 低危 6.1-9.20180224.el8 ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
ncurses-base CVE-2018-19217 低危 6.1-9.20180224.el8 ncurses: Null pointer dereference at function _nc_name_match

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19217

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2018-11-12 19:29 修改: 2024-08-05 12:15
ncurses-base CVE-2020-19185 低危 6.1-9.20180224.el8 ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19185

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-base CVE-2020-19186 低危 6.1-9.20180224.el8 ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19186

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-base CVE-2020-19187 低危 6.1-9.20180224.el8 ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19187

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-base CVE-2020-19188 低危 6.1-9.20180224.el8 ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19188

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-base CVE-2020-19189 低危 6.1-9.20180224.el8 ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-base CVE-2020-19190 低危 6.1-9.20180224.el8 ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19190

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-base CVE-2021-39537 低危 6.1-9.20180224.el8 ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
ncurses-base CVE-2023-45918 低危 6.1-9.20180224.el8 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-02-16 22:15 修改: 2024-10-31 18:35
ncurses-base CVE-2023-50495 低危 6.1-9.20180224.el8 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
jasper-libs CVE-2018-20570 低危 2.0.14-5.el8 jasper: heap-based buffer over-read in jp2_encode()

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20570

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-12-28 16:29 修改: 2020-09-25 12:15
ncurses-libs CVE-2018-19211 低危 6.1-9.20180224.el8 ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
ncurses-libs CVE-2018-19217 低危 6.1-9.20180224.el8 ncurses: Null pointer dereference at function _nc_name_match

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19217

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2018-11-12 19:29 修改: 2024-08-05 12:15
ncurses-libs CVE-2020-19185 低危 6.1-9.20180224.el8 ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19185

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-libs CVE-2020-19186 低危 6.1-9.20180224.el8 ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19186

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-libs CVE-2020-19187 低危 6.1-9.20180224.el8 ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19187

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-libs CVE-2020-19188 低危 6.1-9.20180224.el8 ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19188

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-libs CVE-2020-19189 低危 6.1-9.20180224.el8 ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-libs CVE-2020-19190 低危 6.1-9.20180224.el8 ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19190

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-libs CVE-2021-39537 低危 6.1-9.20180224.el8 ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
ncurses-libs CVE-2023-45918 低危 6.1-9.20180224.el8 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-02-16 22:15 修改: 2024-10-31 18:35
ncurses-libs CVE-2023-50495 低危 6.1-9.20180224.el8 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
jasper-libs CVE-2018-20622 低危 2.0.14-5.el8 jasper: memory leak in jpc_dec_decodepkt()

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20622

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-12-31 19:29 修改: 2020-09-25 12:15
jasper-libs CVE-2018-9055 低危 2.0.14-5.el8 jasper: reachable assertion in jpc_firstone() in jpc_math.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-9055

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-03-27 04:29 修改: 2019-10-03 00:03
jasper-libs CVE-2018-9252 低危 2.0.14-5.el8 jasper: reachable assertion in jpc_abstorelstepsize() in jpc_enc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-9252

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-04-04 02:29 修改: 2020-09-25 12:15
jasper-libs CVE-2022-40755 低危 2.0.14-5.el8 jasper: Reachable assertion in inttobits, jas_image.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40755

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-09-16 22:15 修改: 2022-09-21 13:47
nss CVE-2020-12413 低危 3.67.0-7.el8_5 nss: Information exposure when DH secret are reused across multiple TLS connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12413

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-16 22:15 修改: 2023-02-28 19:49
nss CVE-2024-7531 低危 3.67.0-7.el8_5 mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-08-06 13:15 修改: 2024-10-30 21:35
jasper-libs CVE-2023-51257 低危 2.0.14-5.el8 jasper: Invalid memory write

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51257

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-16 02:15 修改: 2024-01-24 03:15
cups-libs CVE-2021-25317 低危 1:2.2.6-44.el8 cups: insecure permissions of /var/log/cups allows for symlink attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-25317

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2021-05-05 10:15 修改: 2023-11-07 03:31
file-libs CVE-2019-8905 低危 5.33-20.el8 file: stack-based buffer over-read in do_core_note in readelf.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8905

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-02-18 17:29 修改: 2021-12-09 19:38
file-libs CVE-2019-8906 低危 5.33-20.el8 file: out-of-bounds read in do_core_note in readelf.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8906

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-02-18 17:29 修改: 2021-12-09 19:44
nss-softokn CVE-2020-12413 低危 3.67.0-7.el8_5 nss: Information exposure when DH secret are reused across multiple TLS connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12413

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-16 22:15 修改: 2023-02-28 19:49
nss-softokn CVE-2024-7531 低危 3.67.0-7.el8_5 mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-08-06 13:15 修改: 2024-10-30 21:35
dbus-libs CVE-2020-35512 低危 1:1.12.8-18.el8 dbus: users with the same numeric UID could lead to use-after-free and undefined behaviour

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35512

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2021-02-15 17:15 修改: 2023-12-27 16:36
cups-libs CVE-2024-47175 低危 1:2.2.6-44.el8 cups: libppd: remote command injection via attacker controlled data in PPD file

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47175

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-09-26 22:15 修改: 2024-09-30 12:46
dbus CVE-2020-35512 低危 1:1.12.8-18.el8 dbus: users with the same numeric UID could lead to use-after-free and undefined behaviour

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35512

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2021-02-15 17:15 修改: 2023-12-27 16:36
libcurl CVE-2022-35252 低危 7.61.1-22.el8 7.61.1-30.el8 curl: Incorrect handling of control code characters in cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35252

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-23 14:15 修改: 2024-03-27 15:00
nss-softokn-freebl CVE-2020-12413 低危 3.67.0-7.el8_5 nss: Information exposure when DH secret are reused across multiple TLS connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12413

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-16 22:15 修改: 2023-02-28 19:49
nss-softokn-freebl CVE-2024-7531 低危 3.67.0-7.el8_5 mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-08-06 13:15 修改: 2024-10-30 21:35
libcurl CVE-2022-43552 低危 7.61.1-22.el8 7.61.1-30.el8 curl: Use-after-free triggered by an HTTP proxy deny response

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35
libcurl CVE-2023-27534 低危 7.61.1-22.el8 curl: SFTP path ~ resolving discrepancy

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
libcurl CVE-2023-28322 低危 7.61.1-22.el8 7.61.1-33.el8_9.5 curl: more POST-after-PUT confusion

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15
libcurl CVE-2023-38546 低危 7.61.1-22.el8 7.61.1-33.el8_9.5 curl: cookie injection with none file

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15
nss-sysinit CVE-2020-12413 低危 3.67.0-7.el8_5 nss: Information exposure when DH secret are reused across multiple TLS connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12413

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-16 22:15 修改: 2023-02-28 19:49
nss-sysinit CVE-2024-7531 低危 3.67.0-7.el8_5 mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-08-06 13:15 修改: 2024-10-30 21:35
libgcc CVE-2018-20657 低危 8.5.0-10.el8 libiberty: Memory leak in demangle_template function resulting in a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15
libgcc CVE-2019-14250 低危 8.5.0-10.el8 binutils: integer overflow in simple-object-elf.c leads to a heap-based buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14250

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-07-24 04:15 修改: 2023-03-01 18:01
libgcc CVE-2022-27943 低危 8.5.0-10.el8 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
bzip2-libs CVE-2019-12900 低危 1.0.6-26.el8 bzip2: out-of-bounds write in function BZ2_decompress

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12900

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-06-19 23:15 修改: 2023-11-07 03:03
nss-util CVE-2020-12413 低危 3.67.0-7.el8_5 nss: Information exposure when DH secret are reused across multiple TLS connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12413

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-16 22:15 修改: 2023-02-28 19:49
nss-util CVE-2024-7531 低危 3.67.0-7.el8_5 mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-08-06 13:15 修改: 2024-10-30 21:35
openldap CVE-2023-2953 低危 2.4.46-18.el8 2.4.46-19.el8_10 openldap: null pointer dereference in ber_memalloc_x function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-05-30 22:15 修改: 2023-08-02 16:46
glibc CVE-2024-33601 低危 2.28-189.1.el8 2.28-251.el8_10.2 glibc: netgroup cache may terminate daemon on memory allocation failure

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc CVE-2024-33602 低危 2.28-189.1.el8 2.28-251.el8_10.2 glibc: netgroup cache assumes NSS callback uses in-buffer strings

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
ca-certificates CVE-2023-37920 低危 2021.2.50-80.0.el8_4 2024.2.69_v8.0.303-80.0.el8_10 python-certifi: Removal of e-Tugra root certificate

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37920

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-07-25 21:15 修改: 2023-08-12 06:16
java-1.8.0-openjdk-devel CVE-2022-21619 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.352.b08-2.el8_6 OpenJDK: improper handling of long NTLM client hostnames (Security, 8286526)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21619

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15
libjpeg-turbo CVE-2020-35538 低危 1.5.3-12.el8 libjpeg-turbo: Null pointer dereference in jcopy_sample_rows() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35538

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-08-31 16:15 修改: 2022-09-20 17:39
java-1.8.0-openjdk-devel CVE-2022-21624 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.352.b08-2.el8_6 OpenJDK: insufficient randomization of JNDI DNS port numbers (JNDI, 8286910)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21624

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk-devel CVE-2022-3857 低危 1:1.8.0.332.b09-2.el8_6 libpng: Null pointer dereference leads to segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3857

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-03-06 23:15 修改: 2024-10-09 04:15
openssl-libs CVE-2023-0464 低危 1:1.1.1k-6.el8_5 openssl: Denial of service by excessive resource usage in verifying X509 policy constraints

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
openssl-libs CVE-2023-0465 低危 1:1.1.1k-6.el8_5 openssl: Invalid certificate policies in leaf certificates are silently ignored

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
openssl-libs CVE-2023-0466 低危 1:1.1.1k-6.el8_5 openssl: Certificate policy check not enabled

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0466

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
openssl-libs CVE-2023-2650 低危 1:1.1.1k-6.el8_5 openssl: Possible DoS translating ASN.1 object identifiers

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
openssl-libs CVE-2023-3446 低危 1:1.1.1k-6.el8_5 1:1.1.1k-12.el8_9 openssl: Excessive time spent checking DH keys and parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15
openssl-libs CVE-2023-3817 低危 1:1.1.1k-6.el8_5 1:1.1.1k-12.el8_9 OpenSSL: Excessive time spent checking DH q parameter value

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15
openssl-libs CVE-2023-5678 低危 1:1.1.1k-6.el8_5 1:1.1.1k-12.el8_9 openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
openssl-libs CVE-2024-0727 低危 1:1.1.1k-6.el8_5 openssl: denial of service via null dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-01-26 09:15 修改: 2024-10-14 15:15
openssl-libs CVE-2024-2511 低危 1:1.1.1k-6.el8_5 openssl: Unbounded memory growth with session handling in TLSv1.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-04-08 14:15 修改: 2024-10-14 15:15
openssl-libs CVE-2024-41996 低危 1:1.1.1k-6.el8_5 openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
openssl-libs CVE-2024-4741 低危 1:1.1.1k-6.el8_5 openssl: Use After Free with SSL_free_buffers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
openssl-libs CVE-2024-5535 低危 1:1.1.1k-6.el8_5 1:1.1.1k-14.el8_6 openssl: SSL_select_next_proto buffer overread

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
java-1.8.0-openjdk-devel CVE-2023-21843 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.362.b09-2.el8_7 OpenJDK: soundbank URL remote loading (Sound, 8293742)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21843

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-01-18 00:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk-devel CVE-2023-21937 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: missing string checks for NULL characters (8296622)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21937

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
libpkgconf CVE-2023-24056 低危 1.4.2-1.el8 pkgconf: unbounded string expansion due to incorrect checks may result in buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24056

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-01-22 04:15 修改: 2023-02-03 16:47
pcre2 CVE-2022-41409 低危 10.32-2.el8 pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-07-18 14:15 修改: 2023-07-27 03:46
libpng CVE-2019-7317 低危 2:1.6.34-5.el8 libpng: use-after-free in png_image_free in png.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-7317

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2019-02-04 08:29 修改: 2024-10-21 13:55
pkgconf CVE-2023-24056 低危 1.4.2-1.el8 pkgconf: unbounded string expansion due to incorrect checks may result in buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24056

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-01-22 04:15 修改: 2023-02-03 16:47
pkgconf-m4 CVE-2023-24056 低危 1.4.2-1.el8 pkgconf: unbounded string expansion due to incorrect checks may result in buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24056

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-01-22 04:15 修改: 2023-02-03 16:47
pkgconf-pkg-config CVE-2023-24056 低危 1.4.2-1.el8 pkgconf: unbounded string expansion due to incorrect checks may result in buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24056

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-01-22 04:15 修改: 2023-02-03 16:47
libpng CVE-2022-3857 低危 2:1.6.34-5.el8 libpng: Null pointer dereference leads to segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3857

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-03-06 23:15 修改: 2024-10-09 04:15
java-1.8.0-openjdk-devel CVE-2023-21938 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21938

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-devel CVE-2023-21968 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: missing check for slash characters in URI-to-path conversion (8298667)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21968

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-devel CVE-2023-22045 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.382.b05-2.el8 OpenJDK: array indexing integer overflow issue (8304468)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22045

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-07-18 21:15 修改: 2024-01-26 16:04
libssh CVE-2023-6004 低危 0.9.6-3.el8 0.9.6-14.el8 libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6004

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-01-03 17:15 修改: 2024-09-16 18:15
libssh CVE-2023-6918 低危 0.9.6-3.el8 0.9.6-14.el8 libssh: Missing checks for return values for digests

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6918

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-12-19 00:15 修改: 2024-09-16 18:15
fribidi CVE-2022-25310 低危 1.0.4-8.el8 1.0.4-9.el8 fribidi: SEGV in fribidi_remove_bidi_marks

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25310

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-09-06 18:15 修改: 2023-06-23 17:50
gawk CVE-2023-4156 低危 4.2.1-4.el8 gawk: heap out of bound read in builtin.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4156

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-25 18:15 修改: 2023-11-07 04:22
gdb-gdbserver CVE-2022-47007 低危 8.2-18.el8 binutils: memory leak in stab_demangle_v3_arg() in stabs.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-47007

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:16 修改: 2023-08-26 02:14
libssh-config CVE-2023-6004 低危 0.9.6-3.el8 0.9.6-14.el8 libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6004

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-01-03 17:15 修改: 2024-09-16 18:15
libssh-config CVE-2023-6918 低危 0.9.6-3.el8 0.9.6-14.el8 libssh: Missing checks for return values for digests

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6918

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-12-19 00:15 修改: 2024-09-16 18:15
libstdc++ CVE-2018-20657 低危 8.5.0-10.el8 libiberty: Memory leak in demangle_template function resulting in a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15
libstdc++ CVE-2019-14250 低危 8.5.0-10.el8 binutils: integer overflow in simple-object-elf.c leads to a heap-based buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14250

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-07-24 04:15 修改: 2023-03-01 18:01
libstdc++ CVE-2022-27943 低危 8.5.0-10.el8 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
gdb-gdbserver CVE-2022-47010 低危 8.2-18.el8 binutils: memory leak in pr_function_type() in prdbg.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-47010

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:16 修改: 2023-08-26 02:14
libtasn1 CVE-2018-1000654 低危 4.13-3.el8 libtasn1: Infinite loop in _asn1_expand_object_id(ptree) leads to memory exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000654

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2018-08-20 19:31 修改: 2023-11-07 02:51
platform-python CVE-2024-4032 低危 3.6.8-45.el8 3.6.8-67.el8_10 python: incorrect IPv4 and IPv6 private ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
gdb-gdbserver CVE-2022-47011 低危 8.2-18.el8 binutils: memory leak in parse_stab_struct_fields() in stabs.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-47011

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-22 19:16 修改: 2023-08-26 02:14
dbus-tools CVE-2020-35512 低危 1:1.12.8-18.el8 dbus: users with the same numeric UID could lead to use-after-free and undefined behaviour

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35512

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2021-02-15 17:15 修改: 2023-12-27 16:36
procps-ng CVE-2018-1121 低危 3.3.15-6.el8 procps: process hiding through race condition enumerating /proc

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1121

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-06-13 20:29 修改: 2020-06-30 16:15
procps-ng CVE-2023-4016 低危 3.3.15-6.el8 3.3.15-14.el8 procps: ps buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-08-02 05:15 修改: 2023-12-15 18:19
glibc-common CVE-2024-33601 低危 2.28-189.1.el8 2.28-251.el8_10.2 glibc: netgroup cache may terminate daemon on memory allocation failure

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-common CVE-2024-33602 低危 2.28-189.1.el8 2.28-251.el8_10.2 glibc: netgroup cache assumes NSS callback uses in-buffer strings

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
avahi-libs CVE-2017-6519 低危 0.7-20.el8 avahi: Multicast DNS responds to unicast queries outside of local network

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6519

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2017-05-01 01:59 修改: 2023-11-07 02:49
cairo CVE-2018-19876 低危 1.15.12-6.el8 cairo: Invalid free in cairo_ft_apply_variations() resulting in a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19876

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-12-05 20:29 修改: 2019-01-31 19:27
giflib CVE-2023-39742 低危 5.1.4-3.el8 giflib: segfault via getarg.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39742

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-08-25 14:15 修改: 2023-11-07 04:17
elfutils-default-yama-scope CVE-2021-33294 低危 0.186-1.el8 elfutils: an infinite loop was found in the function handle_symtab in readelf.c which causes denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33294

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-07-18 14:15 修改: 2023-07-27 15:19
elfutils-default-yama-scope CVE-2024-25260 低危 0.186-1.el8 elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-02-20 18:15 修改: 2024-08-01 13:47
elfutils-libelf CVE-2021-33294 低危 0.186-1.el8 elfutils: an infinite loop was found in the function handle_symtab in readelf.c which causes denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33294

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-07-18 14:15 修改: 2023-07-27 15:19
elfutils-libelf CVE-2024-25260 低危 0.186-1.el8 elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-02-20 18:15 修改: 2024-08-01 13:47
glibc-minimal-langpack CVE-2024-33601 低危 2.28-189.1.el8 2.28-251.el8_10.2 glibc: netgroup cache may terminate daemon on memory allocation failure

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-minimal-langpack CVE-2024-33602 低危 2.28-189.1.el8 2.28-251.el8_10.2 glibc: netgroup cache assumes NSS callback uses in-buffer strings

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
elfutils-libs CVE-2021-33294 低危 0.186-1.el8 elfutils: an infinite loop was found in the function handle_symtab in readelf.c which causes denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33294

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-07-18 14:15 修改: 2023-07-27 15:19
elfutils-libs CVE-2024-25260 低危 0.186-1.el8 elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-02-20 18:15 修改: 2024-08-01 13:47
gnupg2 CVE-2022-3219 低危 2.2.20-2.el8 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
dbus-common CVE-2020-35512 低危 1:1.12.8-18.el8 dbus: users with the same numeric UID could lead to use-after-free and undefined behaviour

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35512

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2021-02-15 17:15 修改: 2023-12-27 16:36
curl CVE-2022-35252 低危 7.61.1-22.el8 7.61.1-30.el8 curl: Incorrect handling of control code characters in cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35252

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-23 14:15 修改: 2024-03-27 15:00
curl CVE-2022-43552 低危 7.61.1-22.el8 7.61.1-30.el8 curl: Use-after-free triggered by an HTTP proxy deny response

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35
curl CVE-2023-27534 低危 7.61.1-22.el8 curl: SFTP path ~ resolving discrepancy

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
python3-libs CVE-2024-4032 低危 3.6.8-45.el8 3.6.8-67.el8_10 python: incorrect IPv4 and IPv6 private ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
curl CVE-2023-28322 低危 7.61.1-22.el8 7.61.1-33.el8_9.5 curl: more POST-after-PUT confusion

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15
java-1.8.0-openjdk CVE-2022-21619 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.352.b08-2.el8_6 OpenJDK: improper handling of long NTLM client hostnames (Security, 8286526)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21619

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk CVE-2022-21624 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.352.b08-2.el8_6 OpenJDK: insufficient randomization of JNDI DNS port numbers (JNDI, 8286910)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21624

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk CVE-2022-3857 低危 1:1.8.0.332.b09-2.el8_6 libpng: Null pointer dereference leads to segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3857

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-03-06 23:15 修改: 2024-10-09 04:15
java-1.8.0-openjdk CVE-2023-21843 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.362.b09-2.el8_7 OpenJDK: soundbank URL remote loading (Sound, 8293742)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21843

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-01-18 00:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk CVE-2023-21937 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: missing string checks for NULL characters (8296622)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21937

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk CVE-2023-21938 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21938

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk CVE-2023-21968 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: missing check for slash characters in URI-to-path conversion (8298667)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21968

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
python3-libxml2 CVE-2023-45322 低危 2.9.7-13.el8 libxml2: use-after-free in xmlUnlinkNode() in tree.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45322

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-10-06 22:15 修改: 2024-08-02 21:15
python3-libxml2 CVE-2024-34459 低危 2.9.7-13.el8 libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34459

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-05-14 15:39 修改: 2024-08-22 18:35
java-1.8.0-openjdk CVE-2023-22045 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.382.b05-2.el8 OpenJDK: array indexing integer overflow issue (8304468)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22045

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-07-18 21:15 修改: 2024-01-26 16:04
python3-pip-wheel CVE-2018-20225 低危 9.0.3-22.el8 python-pip: when --extra-index-url option is used and package does not already exist in the public index, the installation of malicious package with arbitrary version number is possible.

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20225

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2020-05-08 18:15 修改: 2024-08-05 12:15
gnutls CVE-2021-4209 低危 3.6.16-4.el8 GnuTLS: Null pointer dereference in MD_UPDATE

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4209

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-24 16:15 修改: 2022-10-27 16:57
dbus-daemon CVE-2020-35512 低危 1:1.12.8-18.el8 dbus: users with the same numeric UID could lead to use-after-free and undefined behaviour

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35512

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2021-02-15 17:15 修改: 2023-12-27 16:36
java-1.8.0-openjdk-headless CVE-2022-21619 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.352.b08-2.el8_6 OpenJDK: improper handling of long NTLM client hostnames (Security, 8286526)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21619

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk-headless CVE-2022-21624 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.352.b08-2.el8_6 OpenJDK: insufficient randomization of JNDI DNS port numbers (JNDI, 8286910)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21624

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk-headless CVE-2022-3857 低危 1:1.8.0.332.b09-2.el8_6 libpng: Null pointer dereference leads to segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3857

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-03-06 23:15 修改: 2024-10-09 04:15
java-1.8.0-openjdk-headless CVE-2023-21843 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.362.b09-2.el8_7 OpenJDK: soundbank URL remote loading (Sound, 8293742)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21843

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-01-18 00:15 修改: 2024-01-17 15:15
java-1.8.0-openjdk-headless CVE-2023-21937 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: missing string checks for NULL characters (8296622)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21937

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-headless CVE-2023-21938 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21938

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-headless CVE-2023-21968 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.372.b07-1.el8_7 OpenJDK: missing check for slash characters in URI-to-path conversion (8298667)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21968

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15
java-1.8.0-openjdk-headless CVE-2023-22045 低危 1:1.8.0.332.b09-2.el8_6 1:1.8.0.382.b05-2.el8 OpenJDK: array indexing integer overflow issue (8304468)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22045

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-07-18 21:15 修改: 2024-01-26 16:04
curl CVE-2023-38546 低危 7.61.1-22.el8 7.61.1-33.el8_9.5 curl: cookie injection with none file

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15
cairo CVE-2019-6461 低危 1.15.12-6.el8 cairo: assertion problem in _cairo_arc_in_direction in cairo-arc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6461

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
cairo CVE-2019-6462 低危 1.15.12-6.el8 cairo: infinite loop in the function _arc_error_normalized in the file cairo-arc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6462

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
glib2 CVE-2023-29499 低危 2.56.4-158.el8 glib: GVariant offset table entry size is not checked in is_normal()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29499

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-14 20:15 修改: 2023-11-27 14:15
glib2 CVE-2023-32611 低危 2.56.4-158.el8 glib: g_variant_byteswap() can take a long time with some non-normal inputs

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32611

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-14 20:15 修改: 2023-11-27 14:15
krb5-libs CVE-2024-26458 低危 1.18.2-14.el8 1.18.2-27.el8_10 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
krb5-libs CVE-2024-26461 低危 1.18.2-14.el8 1.18.2-27.el8_10 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
glib2 CVE-2023-32636 低危 2.56.4-158.el8 glib: Timeout in fuzz_variant_text

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32636

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-14 20:15 修改: 2024-01-12 22:09
glib2 CVE-2023-32665 低危 2.56.4-158.el8 glib: GVariant deserialisation does not match spec for non-normal data

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32665

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-14 20:15 修改: 2024-04-26 09:15
jasper-libs CVE-2017-13745 低危 2.0.14-5.el8 jasper: reachable abort in jpc_dec_process_sot()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13745

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38
shadow-utils CVE-2023-4641 低危 2:4.6-16.el8 2:4.6-19.el8 shadow-utils: possible password leak during passwd(1) change

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
jasper-libs CVE-2017-5499 低危 2.0.14-5.el8 jasper: Signed integer overflow in jpc_dequantize() in jpc_dec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-5499

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2017-03-01 15:59 修改: 2020-09-25 12:15
jasper-libs CVE-2017-9782 低危 2.0.14-5.el8 jasper: cdef.ents[] heap-based buffer over-read in jp2_decode()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9782

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2017-06-21 20:29 修改: 2020-09-25 12:15
libX11 CVE-2022-3555 低危 1.6.8-5.el8 libX11: memory leak in _XFreeX11XCBStructure() of xcb_disp.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3555

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-17 13:15 修改: 2023-11-07 03:51
libtiff CVE-2018-10779 低危 4.0.9-21.el8 libtiff: heap-based buffer over-read in TIFFWriteScanline function in tif_write.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10779

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-05-07 07:29 修改: 2019-10-03 00:03
sqlite-libs CVE-2019-19244 低危 3.26.0-15.el8 sqlite: allows a crash if a sub-select uses both DISTINCT and window functions and also has certain ORDER BY usage

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19244

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-11-25 20:15 修改: 2022-04-15 16:12
sqlite-libs CVE-2019-9936 低危 3.26.0-15.el8 sqlite: heap-based buffer over-read in function fts5HashEntrySort in sqlite3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9936

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-03-22 08:29 修改: 2023-11-07 03:13
sqlite-libs CVE-2019-9937 低危 3.26.0-15.el8 sqlite: null-pointer dereference in function fts5ChunkIterate in sqlite3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9937

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-03-22 08:29 修改: 2023-11-07 03:13
sqlite-libs CVE-2020-35525 低危 3.26.0-15.el8 3.26.0-16.el8_6 sqlite: Null pointer derreference in src/select.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35525

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-01 18:15 修改: 2023-07-06 19:15
sqlite-libs CVE-2023-36191 低危 3.26.0-15.el8 sqlite: CLI fault on missing -nonce

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36191

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-06-23 02:15 修改: 2023-11-07 04:16
sqlite-libs CVE-2024-0232 低危 3.26.0-15.el8 sqlite: use-after-free bug in jsonParseAddNodeArray

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0232

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-01-16 14:15 修改: 2024-09-28 04:15
libtiff CVE-2018-10801 低危 4.0.9-21.el8 libtiff: memory leak in bmp2tiff tool

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10801

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-05-08 06:29 修改: 2019-10-03 00:03
libtiff CVE-2018-17101 低危 4.0.9-21.el8 libtiff: Two out-of-bounds writes in cpTags in tools/tiff2bw.c and tools/pal2rgb.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-17101

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-09-16 21:29 修改: 2019-03-21 16:00
libtiff CVE-2018-19210 低危 4.0.9-21.el8 libtiff: NULL pointer dereference in TIFFWriteDirectorySec function in tif_dirwrite.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19210

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-11-12 19:29 修改: 2023-11-07 02:55
libtiff CVE-2018-5360 低危 4.0.9-21.el8 LibTIFF: heap-based buffer over-read in the ReadTIFFImage function in coders/tiff.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5360

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-01-14 02:29 修改: 2019-04-22 16:25
libtiff CVE-2019-6128 低危 4.0.9-21.el8 libtiff: memory leak in TIFFFdOpen function in tif_unix.c when using pal2rgb

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6128

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2019-01-11 05:29 修改: 2023-03-01 18:41
libtiff CVE-2020-18768 低危 4.0.9-21.el8 libtiff: heap-based buffer overflow in _TIFFmemcpy() in tif_unix.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-18768

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-08-22 19:15 修改: 2023-08-25 20:45
libtiff CVE-2022-0891 低危 4.0.9-21.el8 4.0.9-23.el8 libtiff: heap buffer overflow in extractImageSection

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0891

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-03-10 17:44 修改: 2023-11-07 03:41
libtiff CVE-2022-0908 低危 4.0.9-21.el8 4.0.9-23.el8 tiff: Null source pointer passed as an argument to memcpy in TIFFFetchNormalTag() in tif_dirread.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0908

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-03-11 18:15 修改: 2023-11-07 03:41
systemd CVE-2021-3997 低危 239-58.el8 systemd: Uncontrolled recursion in systemd-tmpfiles when removing files

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
libtiff CVE-2022-0909 低危 4.0.9-21.el8 4.0.9-23.el8 tiff: Divide By Zero error in tiffcrop

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0909

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-03-11 18:15 修改: 2023-11-07 03:41
libtiff CVE-2022-1056 低危 4.0.9-21.el8 libtiff: heap-based buffer overflow in _TIFFmemcpy() in tif_unix.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1056

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-03-28 19:15 修改: 2023-02-22 17:35
libtiff CVE-2022-1354 低危 4.0.9-21.el8 libtiff: heap-buffer-overflow in TIFFReadRawDataStriped() in tiffinfo.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1354

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-08-31 16:15 修改: 2023-02-23 15:50
libtiff CVE-2022-2520 低危 4.0.9-21.el8 4.0.9-26.el8_7 libtiff: Assertion fail in rotateImage() function at tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2520

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-08-31 16:15 修改: 2023-02-28 15:39
libtiff CVE-2022-2521 低危 4.0.9-21.el8 4.0.9-26.el8_7 libtiff: Invalid pointer free operation in TIFFClose() at tif_close.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2521

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-08-31 16:15 修改: 2023-02-23 15:59
libtiff CVE-2022-2868 低危 4.0.9-21.el8 4.0.9-26.el8_7 libtiff: Invalid crop_width and/or crop_length could cause an out-of-bounds read in reverseSamples16bits()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2868

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-08-17 22:15 修改: 2023-11-07 03:47
systemd-libs CVE-2021-3997 低危 239-58.el8 systemd: Uncontrolled recursion in systemd-tmpfiles when removing files

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
libtiff CVE-2023-1916 低危 4.0.9-21.el8 libtiff: out-of-bounds read in extractImageSection() in tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1916

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-10 22:15 修改: 2023-12-23 07:15
libtiff CVE-2023-6228 低危 4.0.9-21.el8 4.0.9-32.el8_10 libtiff: heap-based buffer overflow in cpStripToTile() in tools/tiffcp.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6228

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-12-18 14:15 修改: 2024-10-11 16:15
jasper-libs CVE-2018-18873 低危 2.0.14-5.el8 jasper: NULL pointer dereference in ras_putdatastd() in ras_enc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18873

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-10-31 16:29 修改: 2020-09-25 12:15
jasper-libs CVE-2018-19139 低危 2.0.14-5.el8 jasper: memory leak of data allocated in jpc_unk_getparms() after abort in jpc_dec_process_sot()

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19139

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-11-09 21:29 修改: 2020-09-25 12:15
jasper-libs CVE-2018-19539 低危 2.0.14-5.el8 jasper: access violation in jas_image_readcmpt() in jas_image.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19539

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-11-26 03:29 修改: 2020-08-24 17:37
jasper-libs CVE-2018-19540 低危 2.0.14-5.el8 jasper: heap-based buffer overflow of size 1 in jas_icctxtdesc_input in libjasper/base/jas_icc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19540

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-11-26 03:29 修改: 2021-01-29 22:15
systemd-pam CVE-2021-3997 低危 239-58.el8 systemd: Uncontrolled recursion in systemd-tmpfiles when removing files

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
jasper-libs CVE-2018-19541 低危 2.0.14-5.el8 jasper: heap-based buffer over-read of size 8 in jas_image_depalettize in libjasper/base/jas_image.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19541

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-11-26 03:29 修改: 2021-01-29 21:15
libX11-common CVE-2022-3555 低危 1.6.8-5.el8 libX11: memory leak in _XFreeX11XCBStructure() of xcb_disp.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3555

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-17 13:15 修改: 2023-11-07 03:51
tar CVE-2019-9923 低危 2:1.30-5.el8 tar: null-pointer dereference in pax_decode_header in sparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9923

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-03-22 08:29 修改: 2023-11-07 03:13
tar CVE-2021-20193 低危 2:1.30-5.el8 tar: Memory leak in read_header() in list.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20193

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2021-03-26 17:15 修改: 2024-10-24 18:15
tar CVE-2023-39804 低危 2:1.30-5.el8 tar: Incorrectly handled extension attributes in PAX archives can lead to a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39804

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-03-27 04:15 修改: 2024-03-27 12:29
libarchive CVE-2018-1000879 低危 3.3.3-3.el8_5 libarchive: NULL pointer dereference in ACL parser resulting in a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000879

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2018-12-20 17:29 修改: 2023-11-07 02:51
libarchive CVE-2018-1000880 低危 3.3.3-3.el8_5 libarchive: Improper input validation in WARC parser resulting in a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000880

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2018-12-20 17:29 修改: 2023-11-07 02:51
libxml2 CVE-2023-45322 低危 2.9.7-13.el8 libxml2: use-after-free in xmlUnlinkNode() in tree.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45322

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-10-06 22:15 修改: 2024-08-02 21:15
libxml2 CVE-2024-34459 低危 2.9.7-13.el8 libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34459

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-05-14 15:39 修改: 2024-08-22 18:35
libarchive CVE-2020-21674 低危 3.3.3-3.el8_5 libarchive: heap-based buffer overflow in archive_string_append_from_wcs function in archive_string.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-21674

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2020-10-15 15:15 修改: 2020-10-26 15:53
libzstd CVE-2021-24032 低危 1.4.4-1.el8 zstd: Race condition allows attacker to access world-readable destination file

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-24032

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2021-03-04 21:15 修改: 2021-04-28 20:04
libzstd CVE-2022-4899 低危 1.4.4-1.el8 zstd: mysql: buffer overrun in util.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4899

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-31 20:15 修改: 2023-11-07 03:59
vim-minimal CVE-2018-20786 低危 2:8.0.1763-16.el8_5.13 libvterm: NULL pointer dereference in vterm_screen_set_callbacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20786

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2019-02-24 14:29 修改: 2020-03-30 20:15
vim-minimal CVE-2020-20703 低危 2:8.0.1763-16.el8_5.13 vim: buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-20703

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-06-20 15:15 修改: 2023-06-27 20:54
vim-minimal CVE-2021-3236 低危 2:8.0.1763-16.el8_5.13 vim: NULL pointer dereference in ex_buffer_all method

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3236

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-08-11 14:15 修改: 2023-09-15 14:15
vim-minimal CVE-2021-3927 低危 2:8.0.1763-16.el8_5.13 vim: heap-based buffer overflow in gchar_cursor() in misc1.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3927

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2021-11-05 15:15 修改: 2023-11-07 03:38
vim-minimal CVE-2021-3974 低危 2:8.0.1763-16.el8_5.13 vim: Use after free in regexp_nfa.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3974

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2021-11-19 11:15 修改: 2023-11-07 03:38
vim-minimal CVE-2021-4166 低危 2:8.0.1763-16.el8_5.13 vim: out-of-bounds read in do_arg_all() in src/arglist.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4166

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2021-12-25 19:15 修改: 2023-11-07 03:40
vim-minimal CVE-2022-0351 低危 2:8.0.1763-16.el8_5.13 vim: access of memory location before start of buffer

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0351

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-01-25 18:15 修改: 2022-11-09 19:20
vim-minimal CVE-2022-1619 低危 2:8.0.1763-16.el8_5.13 vim: heap-buffer-overflow in cmdline_erase_chars of ex_getln.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1619

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-05-08 10:15 修改: 2023-11-07 03:42
vim-minimal CVE-2022-1720 低危 2:8.0.1763-16.el8_5.13 vim: buffer over-read in grab_file_name() in findfile.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1720

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-20 15:15 修改: 2023-11-07 03:42
vim-minimal CVE-2022-2124 低危 2:8.0.1763-16.el8_5.13 vim: out of bounds read in current_quote()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2124

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-19 10:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2125 低危 2:8.0.1763-16.el8_5.13 vim: Heap-based Buffer Overflow in get_lisp_indent()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2125

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-19 12:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2126 低危 2:8.0.1763-16.el8_5.13 vim: out of bounds read in suggest_trie_walk()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2126

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-19 13:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2129 低危 2:8.0.1763-16.el8_5.13 vim: out of bounds write in vim_regsub_both()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2129

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-19 19:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2175 低危 2:8.0.1763-16.el8_5.13 vim: buffer over-read in put_on_cmdline() at ex_getln.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2175

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-23 13:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2182 低危 2:8.0.1763-16.el8_5.13 vim: heap-based buffer overflow through parse_cmd_address() in function utf_ptr2char

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2182

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-23 18:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2183 低危 2:8.0.1763-16.el8_5.13 vim: out-of-bounds read through get_lisp_indent() in function get_lisp_indent

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2183

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-23 19:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2206 低危 2:8.0.1763-16.el8_5.13 vim: out-of-bound read in function msg_outtrans_attr

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2206

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-26 19:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2207 低危 2:8.0.1763-16.el8_5.13 vim: heap-based buffer overflow in function ins_bs

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2207

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-27 12:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2208 低危 2:8.0.1763-16.el8_5.13 vim: null pointer dereference in function diff_check

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2208

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-27 13:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2210 低危 2:8.0.1763-16.el8_5.13 vim: out-of-bound write in function ml_append_int

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2210

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-06-27 16:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2284 低危 2:8.0.1763-16.el8_5.13 vim: out of bounds read in utfc_ptr2len() at mbyte.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2284

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-02 15:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2285 低危 2:8.0.1763-16.el8_5.13 vim: integer overflow in del_typebuf() at getchar.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2285

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-02 16:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2286 低危 2:8.0.1763-16.el8_5.13 vim: out of bounds read in ins_bytes() at change.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2286

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-02 19:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2287 低危 2:8.0.1763-16.el8_5.13 vim: out of bounds read in suggest_trie_walk() at spellsuggest.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2287

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-02 22:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2343 低危 2:8.0.1763-16.el8_5.13 vim: heap-based buffer overflow in ins_compl_add() in insexpand.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2343

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-08 18:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2344 低危 2:8.0.1763-16.el8_5.13 vim: heap-based buffer overflow in ins_compl_add() in insexpand.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2344

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-08 19:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2345 低危 2:8.0.1763-16.el8_5.13 vim: use-after-free in skipwhite() in charset.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2345

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-08 22:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2522 低危 2:8.0.1763-16.el8_5.13 vim: heap-based buffer overflow in ins_compl_infercase_gettext() at src/insexpand.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2522

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-07-25 14:15 修改: 2023-05-03 12:16
vim-minimal CVE-2022-2819 低危 2:8.0.1763-16.el8_5.13 vim: heap buffer overflow in compile_lock_unlock() at src/vim9cmds.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2819

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-15 11:21 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2845 低危 2:8.0.1763-16.el8_5.13 vim: Buffer Under-read

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2845

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-17 15:15 修改: 2023-07-10 16:15
vim-minimal CVE-2022-2849 低危 2:8.0.1763-16.el8_5.13 vim: heap-based buffer overflow in latin_ptr2len() at src/mbyte.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2849

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-17 18:15 修改: 2023-11-07 03:46
vim-minimal CVE-2022-2923 低危 2:8.0.1763-16.el8_5.13 vim: null pointer dereference in function sug_filltree

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2923

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-22 21:15 修改: 2023-11-07 03:47
vim-minimal CVE-2022-2946 低危 2:8.0.1763-16.el8_5.13 vim: use after free in function vim_vsnprintf_typval

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2946

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-23 17:15 修改: 2023-11-07 03:47
vim-minimal CVE-2022-2980 低危 2:8.0.1763-16.el8_5.13 vim: null pointer dereference in do_mouse() at src/mouse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2980

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:47
vim-minimal CVE-2022-3037 低危 2:8.0.1763-16.el8_5.13 vim: use after free in function qf_buf_add_line( )

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3037

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-08-30 21:15 修改: 2023-11-07 03:50
vim-minimal CVE-2022-3153 低危 2:8.0.1763-16.el8_5.13 vim: null pointer dereference in vim_regcomp()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3153

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-08 15:15 修改: 2023-05-03 12:16
vim-minimal CVE-2022-3234 低危 2:8.0.1763-16.el8_5.13 vim: Heap-based Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3234

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-17 22:15 修改: 2023-11-07 03:50
vim-minimal CVE-2022-3235 低危 2:8.0.1763-16.el8_5.13 vim: Use After Free

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3235

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-18 20:15 修改: 2023-11-07 03:50
vim-minimal CVE-2022-3256 低危 2:8.0.1763-16.el8_5.13 vim: use-after-free in movemark() at mark.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3256

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-22 13:15 修改: 2023-11-07 03:51
vim-minimal CVE-2022-3296 低危 2:8.0.1763-16.el8_5.13 vim: stack buffer overflow in ex_finally() in ex_eval.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3296

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-25 17:15 修改: 2023-11-07 03:51
vim-minimal CVE-2022-3352 低危 2:8.0.1763-16.el8_5.13 vim: use after free

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3352

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-09-29 12:15 修改: 2023-11-07 03:51
vim-minimal CVE-2022-3705 低危 2:8.0.1763-16.el8_5.13 vim: a use after free in the function qf_update_buffer

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3705

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-10-26 20:15 修改: 2023-11-07 03:51
vim-minimal CVE-2022-4292 低危 2:8.0.1763-16.el8_5.13 vim: use-after-free in did_set_spelllang() in src/spell.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4292

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-12-05 19:15 修改: 2023-11-07 03:57
vim-minimal CVE-2022-4293 低危 2:8.0.1763-16.el8_5.13 vim: floating point exception in num_divide() in src/eval.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4293

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-12-05 19:15 修改: 2023-05-03 12:16
vim-minimal CVE-2023-0049 低危 2:8.0.1763-16.el8_5.13 vim: out-of-bounds read in function build_stl_str_hl

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0049

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-01-04 16:15 修改: 2023-11-07 03:59
vim-minimal CVE-2023-0054 低危 2:8.0.1763-16.el8_5.13 vim: out-of-bounds write in do_string_sub() in eval.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0054

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-01-04 19:15 修改: 2023-06-12 20:15
vim-minimal CVE-2023-0288 低危 2:8.0.1763-16.el8_5.13 vim: a heap-based buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0288

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-01-13 16:15 修改: 2023-11-07 04:00
vim-minimal CVE-2023-0433 低危 2:8.0.1763-16.el8_5.13 vim: reading past the end of a line when formatting text

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0433

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-01-21 15:15 修改: 2023-11-07 04:00
vim-minimal CVE-2023-0512 低危 2:8.0.1763-16.el8_5.13 vim: divide by zero in adjust_skipcol() at move.ca

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0512

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-01-30 16:15 修改: 2023-11-07 04:00
vim-minimal CVE-2023-1127 低危 2:8.0.1763-16.el8_5.13 vim: Divide By Zero in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1127

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-01 19:15 修改: 2023-11-07 04:02
vim-minimal CVE-2023-1170 低危 2:8.0.1763-16.el8_5.13 vim: Heap-based Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1170

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-03 23:15 修改: 2023-11-07 04:02
vim-minimal CVE-2023-1175 低危 2:8.0.1763-16.el8_5.13 vim: Incorrect Calculation of Buffer Size

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1175

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-04 16:15 修改: 2023-11-07 04:02
vim-minimal CVE-2023-1264 低危 2:8.0.1763-16.el8_5.13 vim: NULL pointer dereference issue in utfc_ptr2len

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1264

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-03-07 22:15 修改: 2023-11-07 04:02
vim-minimal CVE-2023-2609 低危 2:8.0.1763-16.el8_5.13 vim: NULL Pointer Dereference in get_register() at register.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2609

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-05-09 18:15 修改: 2023-12-23 07:15
vim-minimal CVE-2023-2610 低危 2:8.0.1763-16.el8_5.13 vim: integer overflow vulnerability in vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2610

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-05-09 22:15 修改: 2023-12-23 07:15
vim-minimal CVE-2023-46246 低危 2:8.0.1763-16.el8_5.13 vim: Integer Overflow in :history command

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46246

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-10-27 19:15 修改: 2023-12-17 03:15
vim-minimal CVE-2023-4733 低危 2:8.0.1763-16.el8_5.13 vim: use-after-free in function buflist_altfpos

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4733

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-04 14:15 修改: 2024-02-01 17:56
vim-minimal CVE-2023-4734 低危 2:8.0.1763-16.el8_5.13 vim: segmentation fault in function f_fullcommand in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4734

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-02 18:15 修改: 2023-12-21 02:52
vim-minimal CVE-2023-4735 低危 2:8.0.1763-16.el8_5.13 vim: OOB Write ops.c in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4735

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-02 18:15 修改: 2023-12-22 17:54
vim-minimal CVE-2023-4738 低危 2:8.0.1763-16.el8_5.13 vim: heap-buffer-overflow in vim_regsub_both in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4738

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-02 20:15 修改: 2024-02-01 16:16
vim-minimal CVE-2023-4750 低危 2:8.0.1763-16.el8_5.13 vim: use-after-free in function bt_quickfix

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4750

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-04 14:15 修改: 2024-02-01 18:01
vim-minimal CVE-2023-4751 低危 2:8.0.1763-16.el8_5.13 vim: heap-buffer-overflow in function utfc_ptr2len in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4751

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-03 19:15 修改: 2023-12-22 18:09
vim-minimal CVE-2023-4752 低危 2:8.0.1763-16.el8_5.13 vim: use-after-free in function ins_compl_get_exp in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4752

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-04 14:15 修改: 2024-02-01 17:59
vim-minimal CVE-2023-4781 低危 2:8.0.1763-16.el8_5.13 vim: heap-buffer-overflow in function vim_regsub_both in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4781

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-09-05 19:15 修改: 2024-02-01 17:57
vim-minimal CVE-2023-48231 低危 2:8.0.1763-16.el8_5.13 vim: use after free in win_close()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48231

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-11-16 23:15 修改: 2023-12-28 17:39
vim-minimal CVE-2023-48232 低危 2:8.0.1763-16.el8_5.13 vim: floating point exception in adjust_plines_for_skipcol()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48232

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-11-16 23:15 修改: 2024-01-25 21:37
vim-minimal CVE-2023-48233 低危 2:8.0.1763-16.el8_5.13 vim: overflow with count for :s command

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48233

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-11-16 23:15 修改: 2024-01-25 21:38
vim-minimal CVE-2023-48234 低危 2:8.0.1763-16.el8_5.13 vim: overflow in nv_z_get_count

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48234

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-11-16 23:15 修改: 2024-01-25 21:33
vim-minimal CVE-2023-48235 低危 2:8.0.1763-16.el8_5.13 vim: overflow in ex address parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48235

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-11-16 23:15 修改: 2024-01-25 21:33
vim-minimal CVE-2023-48236 低危 2:8.0.1763-16.el8_5.13 vim: overflow in get_number

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48236

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-11-16 23:15 修改: 2024-01-25 21:38
vim-minimal CVE-2023-48237 低危 2:8.0.1763-16.el8_5.13 vim: buffer overflow in shift_line

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48237

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-11-16 23:15 修改: 2024-01-25 21:33
vim-minimal CVE-2023-48706 低危 2:8.0.1763-16.el8_5.13 vim: use-after-free in ex_substitute in Vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48706

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-11-22 22:15 修改: 2024-01-05 18:15
vim-minimal CVE-2023-5344 低危 2:8.0.1763-16.el8_5.13 vim: Heap-based Buffer Overflow in trunc_string()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5344

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-10-02 20:15 修改: 2023-12-13 01:15
vim-minimal CVE-2023-5441 低危 2:8.0.1763-16.el8_5.13 vim: NULL pointer dereference in screen_line() in src/screen.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5441

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-10-05 21:15 修改: 2023-11-15 02:33
vim-minimal CVE-2023-5535 低危 2:8.0.1763-16.el8_5.13 vim: use after free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5535

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2023-10-11 20:15 修改: 2023-11-15 02:31
vim-minimal CVE-2024-22667 低危 2:8.0.1763-16.el8_5.13 vim: Stack buffer over flow in did_set_langmap function in map.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22667

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-02-05 08:15 修改: 2024-02-23 16:15
vim-minimal CVE-2024-41965 低危 2:8.0.1763-16.el8_5.13 vim: Double-Free Vulnerability in Vim Could Cause Application Crashes

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41965

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-08-01 22:15 修改: 2024-08-09 14:09
vim-minimal CVE-2024-43374 低危 2:8.0.1763-16.el8_5.13 vim: use-after-free in alist_add() in src/arglist.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43374

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-08-16 02:15 修改: 2024-08-19 13:00
vim-minimal CVE-2024-43802 低危 2:8.0.1763-16.el8_5.13 vim: Heap Buffer Overflow in Vim's Typeahead Buffer Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43802

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-08-26 19:15 修改: 2024-08-27 13:02
vim-minimal CVE-2024-45306 低危 2:8.0.1763-16.el8_5.13 vim: heap-buffer-overflow in Vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45306

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-09-02 18:15 修改: 2024-10-01 15:20
vim-minimal CVE-2024-47814 低危 2:8.0.1763-16.el8_5.13 vim: use-after-free when closing buffers in Vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47814

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2024-10-07 22:15 修改: 2024-10-10 12:57
libarchive CVE-2022-36227 低危 3.3.3-3.el8_5 3.3.3-5.el8 libarchive: NULL pointer dereference in archive_write.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-36227

镜像层: sha256:5bf135c4a0de07e52c11282c0954e3e6b7c7ddc6c8834a7fd2803c3dc6a31a69

发布日期: 2022-11-22 02:15 修改: 2024-03-27 16:04
jasper-libs CVE-2018-19542 低危 2.0.14-5.el8 jasper: invalid access in jp2_decode in libjasper/jp2/jp2_dec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19542

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-11-26 03:29 修改: 2020-04-15 21:15
Java (jar)
低危漏洞:8 中危漏洞:34 高危漏洞:25 严重漏洞:7
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
com.h2database:h2 CVE-2021-42392 严重 1.4.200 2.0.206 h2: Remote Code Execution in Console

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42392

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-01-10 14:10 修改: 2023-02-24 22:15
com.h2database:h2 CVE-2022-23221 严重 1.4.200 2.1.210 h2: Loading of custom classes from remote servers through JNDI

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23221

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-01-19 17:15 修改: 2023-08-18 14:15
com.hazelcast:hazelcast CVE-2022-36437 严重 3.12.11 3.12.13, 4.1.10, 4.2.6, 5.0.4, 5.1.3 hazelcast: Hazelcast connection caching

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-36437

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-12-29 23:15 修改: 2023-01-09 18:33
org.apache.shiro:shiro-core CVE-2022-32532 严重 1.8.0 1.9.1 shiro: authorization bypass due to possible misconfigured

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32532

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-06-29 00:15 修改: 2022-07-08 01:24
org.apache.shiro:shiro-core CVE-2022-40664 严重 1.8.0 1.10.0 shiro: Authentication Bypass Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40664

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-12 07:15 修改: 2023-02-02 18:48
org.apache.shiro:shiro-web CVE-2023-34478 严重 1.8.0 1.12.0, 2.0.0-alpha-3 Apache Shiro, before 1.12.0 or 2.0.0-alpha-3, may be susceptible to a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34478

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-07-24 19:15 修改: 2024-10-02 19:35
org.postgresql:postgresql CVE-2024-1597 严重 42.3.3 42.2.28, 42.3.9, 42.4.4, 42.5.5, 42.6.1, 42.7.2 pgjdbc: PostgreSQL JDBC Driver allows attacker to inject SQL if using PreferQueryMode=SIMPLE

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1597

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-02-19 13:15 修改: 2024-06-10 17:16
com.h2database:h2 CVE-2022-45868 高危 1.4.200 2.2.220 The web-based admin console in H2 Database Engine before 2.2.220 can b ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45868

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-11-23 21:15 修改: 2024-08-03 15:15
com.fasterxml.jackson.core:jackson-databind CVE-2022-42003 高危 2.13.2.1 2.12.7.1, 2.13.4.2 jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15
com.hazelcast:hazelcast CVE-2023-33265 高危 3.12.11 5.2.4, 5.1.7, 5.0.5 Hazelcast Executor Services don't check client permissions properly

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-33265

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-07-18 16:15 修改: 2023-07-28 13:20
com.hazelcast:hazelcast CVE-2023-45859 高危 3.12.11 5.2.5, 5.3.5 Missing permission checks on Hazelcast client protocol

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45859

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-02-28 22:15 修改: 2024-02-29 13:49
com.thoughtworks.xstream:xstream CVE-2022-40151 高危 1.4.19 1.4.20 xstream: Xstream to serialise XML data was vulnerable to Denial of Service attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40151

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-09-16 10:15 修改: 2022-09-20 18:11
com.thoughtworks.xstream:xstream CVE-2022-41966 高危 1.4.19 1.4.20 xstream: Denial of Service by injecting recursive collections or maps based on element's hash values raising a stack overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41966

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-12-28 00:15 修改: 2023-06-27 14:04
commons-fileupload:commons-fileupload CVE-2023-24998 高危 1.4 1.5 FileUpload: FileUpload DoS with excessive parts

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24998

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-02-20 16:15 修改: 2024-02-16 19:11
commons-io:commons-io CVE-2024-47554 高危 2.11.0 2.14.0 apache-commons-io: Possible denial of service attack on untrusted input to XmlStreamReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47554

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-03 12:15 修改: 2024-10-04 13:50
commons-io:commons-io CVE-2024-47554 高危 2.8.0 2.14.0 apache-commons-io: Possible denial of service attack on untrusted input to XmlStreamReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47554

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-03 12:15 修改: 2024-10-04 13:50
commons-io:commons-io CVE-2024-47554 高危 2.8.0 2.14.0 apache-commons-io: Possible denial of service attack on untrusted input to XmlStreamReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47554

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-03 12:15 修改: 2024-10-04 13:50
org.apache.commons:commons-compress CVE-2024-25710 高危 1.21 1.26.0 commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25710

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-02-19 09:15 修改: 2024-03-07 17:15
com.fasterxml.jackson.core:jackson-databind CVE-2022-42004 高危 2.13.2.1 2.12.7.1, 2.13.4 jackson-databind: use of deeply nested arrays

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10
com.amazon.ion:ion-java CVE-2024-21634 高危 1.8.0 1.10.5 ion-java: ion-java: Ion Java StackOverflow vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21634

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-03 23:15 修改: 2024-01-10 16:38
com.amazonaws:aws-java-sdk-s3 CVE-2022-31159 高危 1.11.822 1.12.261 Partial Path Traversal in com.amazonaws:aws-java-sdk-s3

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-31159

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-07-15 18:15 修改: 2022-07-22 16:27
org.cyclonedx:cyclonedx-core-java CVE-2024-38374 高危 5.0.1 9.0.4 cyclonedx-core-java: XML External Entity injection while evaluating XPath expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-38374

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-06-28 18:15 修改: 2024-07-01 12:37
org.elasticsearch:elasticsearch CVE-2019-7611 高危 2.4.3 5.6.15, 6.6.1 elasticsearch: Improper permission issue when attaching a new name to an index

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-7611

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2019-03-25 19:29 修改: 2020-10-19 18:10
org.elasticsearch:elasticsearch CVE-2023-31418 高危 2.4.3 7.17.13, 8.9.0 elasticsearch: uncontrolled resource consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31418

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-26 18:15 修改: 2023-11-30 22:15
org.keycloak:keycloak-saml-core CVE-2021-3827 高危 12.0.3 18.0.0 keycloak-server-spi-private: ECP SAML binding bypasses authentication flows

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3827

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-08-23 16:15 修改: 2022-11-30 18:46
org.keycloak:keycloak-saml-core CVE-2024-8698 高危 12.0.3 25.0.6 keycloak-saml-core: Improper Verification of SAML Responses Leading to Privilege Escalation in Keycloak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8698

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-09-19 16:15 修改: 2024-09-20 12:30
org.keycloak:keycloak-saml-core GHSA-xgfv-xpx8-qhcr 高危 12.0.3 22.0.13, 24.0.8, 25.0.6 Improper Verification of SAML Responses Leading to Privilege Escalation in Keycloak

漏洞详情: https://github.com/advisories/GHSA-xgfv-xpx8-qhcr

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
com.h2database:h2 CVE-2021-23463 高危 1.4.200 2.0.202 h2database: XXE injection vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23463

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2021-12-10 20:15 修改: 2023-08-18 14:15
org.postgresql:postgresql CVE-2022-31197 高危 42.3.3 42.2.26, 42.4.1, 42.3.7 postgresql: SQL Injection in ResultSet.refreshRow() with malicious column names

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-31197

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-08-03 19:15 修改: 2023-11-07 03:47
org.yaml:snakeyaml CVE-2022-1471 高危 1.28 2.0 SnakeYaml: Constructor Deserialization Remote Code Execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1471

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-12-01 11:15 修改: 2024-06-21 19:15
org.yaml:snakeyaml CVE-2022-25857 高危 1.28 1.31 snakeyaml: Denial of Service due to missing nested depth limitation for collections

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25857

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-08-30 05:15 修改: 2024-03-15 11:15
software.amazon.ion:ion-java CVE-2024-21634 高危 1.0.2 1.10.5 ion-java: ion-java: Ion Java StackOverflow vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21634

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-03 23:15 修改: 2024-01-10 16:38
org.bouncycastle:bcprov-jdk15to18 CVE-2024-30171 中危 1.71 1.78 bc-java: BouncyCastle vulnerable to a timing variant of Bleichenbacher (Marvin Attack)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-30171

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-05-14 15:21 修改: 2024-08-19 18:35
org.bouncycastle:bcprov-jdk15to18 CVE-2024-30172 中危 1.71 1.78 org.bouncycastle:bcprov-jdk18on: Infinite loop in ED25519 verification in the ScalarUtil class

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-30172

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-05-14 15:21 修改: 2024-06-14 13:15
org.codehaus.groovy:groovy-all CVE-2020-17521 中危 2.4.17 2.4.21, 2.5.14, 3.0.7 groovy: OS temporary directory leads to information disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-17521

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2020-12-07 20:15 修改: 2023-11-07 03:19
org.apache.commons:commons-compress CVE-2024-26308 中危 1.21 1.26.0 commons-compress: OutOfMemoryError unpacking broken Pack200 file

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26308

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-02-19 09:15 修改: 2024-03-21 19:54
org.eclipse.jetty:jetty-http CVE-2023-40167 中危 9.4.43.v20210629 9.4.52, 10.0.16, 11.0.16, 12.0.1 jetty: Improper validation of HTTP/1 content-length

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40167

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-09-15 20:15 修改: 2023-10-13 01:59
org.eclipse.jetty:jetty-server CVE-2023-26048 中危 9.4.43.v20210629 9.4.51.v20230217, 10.0.14, 11.0.14 jetty-server: OutOfMemoryError for large multipart without filename read via request.getParameter()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26048

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 21:15 修改: 2023-09-30 15:15
org.eclipse.jetty:jetty-server CVE-2024-8184 中危 9.4.43.v20210629 12.0.9, 10.0.24, 11.0.24, 9.4.56 org.eclipse.jetty:jetty-server: jetty: Jetty ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8184

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-14 16:15 修改: 2024-10-15 12:57
org.eclipse.jetty:jetty-servlets CVE-2024-9823 中危 9.4.43.v20210629 9.4.54, 10.0.18, 11.0.18 org.eclipse.jetty:jetty-servlets: jetty: Jetty DOS vulnerability on DosFilter

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9823

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-14 15:15 修改: 2024-10-15 12:57
org.apache.santuario:xmlsec CVE-2023-44483 中危 2.3.0 2.3.4, 2.2.6, 3.0.3 santuario: Private Key disclosure in debug-log output

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44483

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-10-20 10:15 修改: 2023-10-27 18:49
com.hazelcast:hazelcast CVE-2023-33264 中危 3.12.11 5.3.0 hazelcast: Improper password mask

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-33264

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-05-22 01:15 修改: 2023-06-02 17:41
org.elasticsearch:elasticsearch CVE-2018-3824 中危 2.4.3 5.6.9, 6.2.4 Elasticsearch subject to cross site scripting

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3824

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2018-09-19 19:29 修改: 2019-10-09 23:40
org.elasticsearch:elasticsearch CVE-2019-7614 中危 2.4.3 6.8.2, 7.2.1 elasticsearch: Race condition in response headers on systems with multiple submitting requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-7614

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2019-07-30 22:15 修改: 2023-03-03 19:17
org.elasticsearch:elasticsearch CVE-2020-7019 中危 2.4.3 7.9.0, 6.8.12 elasticsearch: scrolling search can leak fields that should be hidden allowing access restriction bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7019

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2020-08-18 17:15 修改: 2023-01-27 20:50
org.elasticsearch:elasticsearch CVE-2020-7021 中危 2.4.3 6.8.14, 7.10.0 elasticsearch: Information disclosure via audit logging with emit_request_body option enabled

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7021

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2021-02-10 19:15 修改: 2021-03-26 12:49
org.elasticsearch:elasticsearch CVE-2021-22135 中危 2.4.3 7.11.2, 6.8.15 elasticsearch: Document disclosure flaw in the Elasticsearch suggester

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22135

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2021-05-13 18:15 修改: 2021-09-07 22:06
org.elasticsearch:elasticsearch CVE-2021-22137 中危 2.4.3 7.11.2, 6.8.15 elasticsearch: Document disclosure flaw when Document or Field Level Security is used

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22137

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2021-05-13 18:15 修改: 2022-11-04 18:30
org.elasticsearch:elasticsearch CVE-2021-22144 中危 2.4.3 6.8.17, 7.13.3 elasticsearch: uncontrolled recursion in Grok parser

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22144

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2021-07-26 12:15 修改: 2022-05-10 18:02
org.elasticsearch:elasticsearch CVE-2023-49921 中危 2.4.3 7.17.16, 8.11.2 elasticsearch: Insertion of Sensitive Information into Log File

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49921

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-26 05:15 修改: 2024-09-11 14:09
org.elasticsearch:elasticsearch CVE-2024-23444 中危 2.4.3 8.13.0, 7.17.23 Elasticsearch stores private key on disk unencrypted

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23444

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-07-31 18:15 修改: 2024-08-01 12:42
org.jsoup:jsoup CVE-2022-36033 中危 1.14.2 1.15.3 jsoup: The jsoup cleaner may incorrectly sanitize crafted XSS attempts if SafeList.preserveRelativeLinks is enabled

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-36033

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-08-29 17:15 修改: 2022-12-08 03:48
com.hazelcast:hazelcast CVE-2023-45860 中危 3.12.11 5.3.5, 5.2.5 Hazelcast: Permission checking in CSV File Source connector

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45860

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-02-16 10:15 修改: 2024-02-16 13:37
org.apache.shiro:shiro-core CVE-2023-46749 中危 1.8.0 1.13.0, 2.0.0-alpha4 shiro: path traversal attack may lead to authentication bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46749

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-01-15 10:15 修改: 2024-01-22 20:22
com.google.guava:guava CVE-2023-2976 中危 30.1.1-jre 32.0.0-android guava: insecure temporary directory creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2976

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-06-14 18:15 修改: 2024-02-13 19:15
org.apache.shiro:shiro-web CVE-2023-46750 中危 1.8.0 1.13.0, 2.0.0-alpha-4 shiro: URL redirection to untrusted site in FORM authentication feature

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46750

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-12-14 09:15 修改: 2023-12-18 20:10
org.apache.tika:tika-core CVE-2022-30973 中危 1.26 1.28.3 tika-core: incomplete fix for CVE-2022-30126

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30973

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-05-31 14:15 修改: 2022-10-27 16:41
org.postgresql:postgresql CVE-2022-41946 中危 42.3.3 42.2.27, 42.3.8, 42.4.3, 42.5.1 postgresql-jdbc: Information leak of prepared statement data due to insecure temporary file permissions

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41946

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-11-23 20:15 修改: 2024-03-29 13:15
org.bouncycastle:bcprov-jdk15to18 CVE-2023-33201 中危 1.71 1.74 bouncycastle: potential blind LDAP injection attack using a self-signed certificate

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-33201

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-07-05 03:15 修改: 2023-08-24 19:15
org.bouncycastle:bcprov-jdk15to18 CVE-2023-33202 中危 1.71 1.73 bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-33202

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-11-23 16:15 修改: 2024-09-09 13:53
org.yaml:snakeyaml CVE-2022-38749 中危 1.28 1.31 snakeyaml: Uncaught exception in org.yaml.snakeyaml.composer.Composer.composeSequenceNode

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38749

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15
org.yaml:snakeyaml CVE-2022-38750 中危 1.28 1.31 snakeyaml: Uncaught exception in org.yaml.snakeyaml.constructor.BaseConstructor.constructObject

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38750

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15
org.yaml:snakeyaml CVE-2022-38751 中危 1.28 1.31 snakeyaml: Uncaught exception in java.base/java.util.regex.Pattern$Ques.match

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38751

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15
org.yaml:snakeyaml CVE-2022-38752 中危 1.28 1.32 snakeyaml: Uncaught exception in java.base/java.util.ArrayList.hashCode

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38752

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15
org.yaml:snakeyaml CVE-2022-41854 中危 1.28 1.32 dev-java/snakeyaml: DoS via stack overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41854

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-11-11 13:15 修改: 2024-06-21 19:15
org.bouncycastle:bcprov-jdk15to18 CVE-2024-29857 中危 1.71 1.78 org.bouncycastle: Importing an EC certificate with crafted F2m parameters may lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29857

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-05-14 15:17 修改: 2024-08-15 19:35
org.elasticsearch:elasticsearch CVE-2020-7020 低危 2.4.3 6.8.13, 7.9.2 elasticsearch: not properly preserving security permissions when executing complex queries may lead to information disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7020

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2020-10-22 17:15 修改: 2022-06-03 18:56
org.eclipse.jetty:jetty-http CVE-2022-2047 低危 9.4.43.v20210629 9.4.47, 10.0.10, 11.0.10 jetty-http: improver hostname input handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2047

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2022-07-07 21:15 修改: 2022-10-25 19:10
org.eclipse.jetty:jetty-servlets CVE-2023-36479 低危 9.4.43.v20210629 9.4.52, 10.0.16, 11.0.16 jetty: Improper addition of quotation marks to user inputs in CgiServlet

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36479

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-09-15 19:15 修改: 2023-10-16 19:20
org.eclipse.jetty:jetty-xml GHSA-58qw-p7qm-5rvh 低危 9.4.43.v20210629 10.0.16, 11.0.16, 12.0.0, 9.4.52.v20230823 Eclipse Jetty XmlParser allows arbitrary DOCTYPE declarations

漏洞详情: https://github.com/advisories/GHSA-58qw-p7qm-5rvh

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
org.eclipse.jetty:jetty-http CVE-2024-6763 低危 9.4.43.v20210629 12.0.12 org.eclipse.jetty:jetty-http: jetty: Jetty URI parsing of invalid authority

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6763

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-10-14 16:15 修改: 2024-10-15 12:57
org.bouncycastle:bcprov-jdk15to18 CVE-2024-34447 低危 1.71 1.78 org.bouncycastle: Use of Incorrectly-Resolved Name or Reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34447

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2024-05-03 16:15 修改: 2024-06-14 13:15
com.google.guava:guava CVE-2020-8908 低危 30.1.1-jre 32.0.0-android guava: local information disclosure via temporary directory created with unsafe permissions

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8908

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2020-12-10 23:15 修改: 2023-08-02 17:30
org.eclipse.jetty:jetty-server CVE-2023-26049 低危 9.4.43.v20210629 9.4.51.v20230217, 10.0.14, 11.0.14, 12.0.0.beta0 jetty-server: Cookie parsing of quoted values can exfiltrate values from other cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26049

镜像层: sha256:6bc516427cc5bd6f58024f862372c3607cf5f9efb927b1f9a9b90104ad35dfc6

发布日期: 2023-04-18 21:15 修改: 2024-02-01 15:36