| expat |
CVE-2026-45186 |
高危 |
2.5.0-1.el8_10 |
2.5.0-2.el8_10 |
libexpat: denial of service via crafted XML input
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45186
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-05-10 07:16 修改: 2026-05-14 17:20
|
| gnutls |
CVE-2026-33845 |
高危 |
3.6.16-8.el8_10.4 |
3.6.16-8.el8_10.6 |
gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
|
| gnutls |
CVE-2026-33846 |
高危 |
3.6.16-8.el8_10.4 |
3.6.16-8.el8_10.6 |
gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-04 10:15 修改: 2026-06-02 16:16
|
| gnutls |
CVE-2026-42009 |
高危 |
3.6.16-8.el8_10.4 |
3.6.16-8.el8_10.6 |
gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-18 13:16 修改: 2026-06-08 17:16
|
| gnutls |
CVE-2026-42010 |
高危 |
3.6.16-8.el8_10.4 |
3.6.16-8.el8_10.6 |
gnutls: gnutls: Authentication Bypass via NUL Character in Username
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-07 12:16 修改: 2026-06-10 16:17
|
| java-1.8.0-openjdk-headless |
CVE-2025-66293 |
高危 |
1:1.8.0.482.b08-1.el8 |
|
libpng: LIBPNG out-of-bounds read in png_image_read_composite
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66293
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-12-03 21:15 修改: 2025-12-16 19:12
|
| java-1.8.0-openjdk-headless |
CVE-2026-22016 |
高危 |
1:1.8.0.482.b08-1.el8 |
1:1.8.0.492.b09-1.el8 |
openjdk: Enhance Path Factories Redux (Oracle CPU 2026-04)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22016
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-21 21:16 修改: 2026-04-27 12:16
|
| java-1.8.0-openjdk-headless |
CVE-2026-22020 |
高危 |
1:1.8.0.482.b08-1.el8 |
|
Important: java-17-openjdk security update
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22020
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| java-1.8.0-openjdk-headless |
CVE-2026-25646 |
高危 |
1:1.8.0.482.b08-1.el8 |
|
libpng: LIBPNG has a heap buffer overflow in png_set_quantize
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25646
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-02-10 18:16 修改: 2026-02-13 20:43
|
| libarchive |
CVE-2026-4424 |
高危 |
3.3.3-6.el8_10 |
3.3.3-7.el8_10 |
libarchive: libarchive: Information disclosure via heap out-of-bounds read in RAR archive processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4424
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-19 15:16 修改: 2026-06-10 18:17
|
| libcap |
CVE-2026-4878 |
高危 |
2.48-6.el8_9 |
2.48-6.el8_10.1 |
libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-09 16:16 修改: 2026-06-11 10:16
|
| libnghttp2 |
CVE-2026-27135 |
高危 |
1.33.0-6.el8_10.1 |
1.33.0-6.el8_10.2 |
nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27135
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-18 18:16 修改: 2026-05-13 22:16
|
| openssl-libs |
CVE-2026-45447 |
高危 |
1:1.1.1k-15.el8_6 |
|
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:56
|
| platform-python |
CVE-2026-4519 |
高危 |
3.6.8-73.el8_10 |
3.6.8-75.el8_10 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-20 15:16 修改: 2026-04-16 14:53
|
| platform-python |
CVE-2026-4786 |
高危 |
3.6.8-73.el8_10 |
3.6.8-76.el8_10 |
python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-13 22:16 修改: 2026-04-29 16:16
|
| platform-python |
CVE-2026-6100 |
高危 |
3.6.8-73.el8_10 |
3.6.8-76.el8_10 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-13 18:16 修改: 2026-04-17 15:18
|
| python3-libs |
CVE-2026-4519 |
高危 |
3.6.8-73.el8_10 |
3.6.8-75.el8_10 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-20 15:16 修改: 2026-04-16 14:53
|
| python3-libs |
CVE-2026-4786 |
高危 |
3.6.8-73.el8_10 |
3.6.8-76.el8_10 |
python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-13 22:16 修改: 2026-04-29 16:16
|
| python3-libs |
CVE-2026-6100 |
高危 |
3.6.8-73.el8_10 |
3.6.8-76.el8_10 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-13 18:16 修改: 2026-04-17 15:18
|
| curl |
CVE-2025-14017 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
|
| curl |
CVE-2026-1965 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
|
| curl |
CVE-2026-3783 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
|
| curl |
CVE-2026-3784 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: curl: Unauthorized access due to improper HTTP proxy connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
|
| curl |
CVE-2026-3805 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: curl: Arbitrary code execution or Denial of Service via use-after-free in SMB request handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3805
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:08
|
| curl |
CVE-2026-4873 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: curl: Information disclosure due to incorrect TLS connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
|
| curl |
CVE-2026-5545 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
|
| curl |
CVE-2026-5773 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
|
| curl |
CVE-2026-6253 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
|
| curl |
CVE-2026-6429 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: libcurl: Credential leak via reused proxy connection during HTTP redirects
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
|
| curl |
CVE-2026-7168 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
|
| avahi-libs |
CVE-2024-52615 |
中危 |
0.7-27.el8_10.1 |
|
avahi: Avahi Wide-Area DNS Uses Constant Source Port
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2024-11-21 21:15 修改: 2026-04-15 00:35
|
| expat |
CVE-2026-32776 |
中危 |
2.5.0-1.el8_10 |
|
libexpat: libexpat: Denial of Service due to NULL pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32776
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
|
| expat |
CVE-2026-32777 |
中危 |
2.5.0-1.el8_10 |
|
libexpat: libexpat: Denial of Service via infinite loop in DTD content parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32777
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
|
| expat |
CVE-2026-32778 |
中危 |
2.5.0-1.el8_10 |
|
libexpat: libexpat: Denial of Service via NULL pointer dereference after out-of-memory condition
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32778
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
|
| expat |
CVE-2026-50219 |
中危 |
2.5.0-1.el8_10 |
|
expat: libexpat: Use-after-free vulnerability due to improper handler call depth tracking
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50219
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-06-04 06:16 修改: 2026-06-04 18:39
|
| file-libs |
CVE-2019-8905 |
中危 |
5.33-27.el8_10 |
|
file: stack-based buffer over-read in do_core_note in readelf.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8905
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2019-02-18 17:29 修改: 2024-11-21 04:50
|
| glib2 |
CVE-2025-14087 |
中危 |
2.56.4-168.el8_10 |
2.56.4-169.el8_10 |
glib: GLib: Buffer underflow in GVariant parser leads to heap corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14087
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-12-10 09:15 修改: 2026-06-10 18:16
|
| glib2 |
CVE-2025-14512 |
中危 |
2.56.4-168.el8_10 |
2.56.4-169.el8_10 |
glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14512
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-12-11 07:16 修改: 2026-06-10 18:16
|
| glib2 |
CVE-2026-1484 |
中危 |
2.56.4-168.el8_10 |
|
Glib: Integer Overflow Leading to Buffer Underflow and Out-of-Bounds Write in GLib g_base64_encode()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1484
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-27 14:15 修改: 2026-06-02 14:16
|
| glib2 |
CVE-2026-1489 |
中危 |
2.56.4-168.el8_10 |
|
Glib: GLib: Memory corruption via integer overflow in Unicode case conversion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1489
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-27 15:15 修改: 2026-06-02 14:16
|
| glibc |
CVE-2026-4046 |
中危 |
2.28-251.el8_10.31 |
2.28-251.el8_10.37 |
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-30 18:16 修改: 2026-04-20 22:16
|
| glibc |
CVE-2026-4437 |
中危 |
2.28-251.el8_10.31 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:41
|
| glibc |
CVE-2026-5435 |
中危 |
2.28-251.el8_10.31 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| glibc |
CVE-2026-5450 |
中危 |
2.28-251.el8_10.31 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| glibc |
CVE-2026-5928 |
中危 |
2.28-251.el8_10.31 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| glibc-common |
CVE-2026-4046 |
中危 |
2.28-251.el8_10.31 |
2.28-251.el8_10.37 |
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-30 18:16 修改: 2026-04-20 22:16
|
| glibc-common |
CVE-2026-4437 |
中危 |
2.28-251.el8_10.31 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:41
|
| glibc-common |
CVE-2026-5435 |
中危 |
2.28-251.el8_10.31 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| glibc-common |
CVE-2026-5450 |
中危 |
2.28-251.el8_10.31 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| glibc-common |
CVE-2026-5928 |
中危 |
2.28-251.el8_10.31 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| glibc-minimal-langpack |
CVE-2026-4046 |
中危 |
2.28-251.el8_10.31 |
2.28-251.el8_10.37 |
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-30 18:16 修改: 2026-04-20 22:16
|
| glibc-minimal-langpack |
CVE-2026-4437 |
中危 |
2.28-251.el8_10.31 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:41
|
| glibc-minimal-langpack |
CVE-2026-5435 |
中危 |
2.28-251.el8_10.31 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| glibc-minimal-langpack |
CVE-2026-5450 |
中危 |
2.28-251.el8_10.31 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| glibc-minimal-langpack |
CVE-2026-5928 |
中危 |
2.28-251.el8_10.31 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| gnupg2 |
CVE-2025-68972 |
中危 |
2.2.20-4.el8_10 |
|
gnupg: GnuPG: Signature bypass via form feed character in signed messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
|
| avahi-libs |
CVE-2024-52616 |
中危 |
0.7-27.el8_10.1 |
|
avahi: Avahi Wide-Area DNS Predictable Transaction IDs
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2024-11-21 21:15 修改: 2026-04-15 00:35
|
| avahi-libs |
CVE-2025-59529 |
中危 |
0.7-27.el8_10.1 |
|
avahi: simple clients denial-of-service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59529
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-12-18 21:15 修改: 2026-01-16 16:50
|
| avahi-libs |
CVE-2025-68276 |
中危 |
0.7-27.el8_10.1 |
|
avahi: Avahi: Denial of Service via D-Bus record browsers with AVAHI_LOOKUP_USE_WIDE_AREA flag
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68276
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-12 18:15 修改: 2026-01-16 16:51
|
| avahi-libs |
CVE-2025-68468 |
中危 |
0.7-27.el8_10.1 |
|
avahi: Avahi: Denial of Service via crafted mDNS/DNS-SD announcements
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68468
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-12 18:15 修改: 2026-01-16 16:52
|
| gnutls |
CVE-2025-14831 |
中危 |
3.6.16-8.el8_10.4 |
3.6.16-8.el8_10.5 |
gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14831
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-02-09 15:16 修改: 2026-06-10 18:16
|
| gnutls |
CVE-2026-3833 |
中危 |
3.6.16-8.el8_10.4 |
3.6.16-8.el8_10.6 |
gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
|
| gnutls |
CVE-2026-42011 |
中危 |
3.6.16-8.el8_10.4 |
3.6.16-8.el8_10.6 |
gnutls: gnutls: Security bypass due to incorrect name constraint handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-07 15:16 修改: 2026-06-02 16:16
|
| gnutls |
CVE-2026-42012 |
中危 |
3.6.16-8.el8_10.4 |
3.6.16-8.el8_10.6 |
gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| gnutls |
CVE-2026-42013 |
中危 |
3.6.16-8.el8_10.4 |
3.6.16-8.el8_10.6 |
gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| gnutls |
CVE-2026-42014 |
中危 |
3.6.16-8.el8_10.4 |
3.6.16-8.el8_10.6 |
gnutls: Fix use-after-free in gnutls_pkcs11_token_set_pin
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-16 02:16 修改: 2026-06-16 15:26
|
| gnutls |
CVE-2026-42015 |
中危 |
3.6.16-8.el8_10.4 |
3.6.16-8.el8_10.6 |
gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| gnutls |
CVE-2026-5260 |
中危 |
3.6.16-8.el8_10.4 |
3.6.16-8.el8_10.6 |
gnutls: gnutls: Information disclosure via heap overread in RSA key exchange
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| avahi-libs |
CVE-2025-68471 |
中危 |
0.7-27.el8_10.1 |
|
avahi: Avahi: Denial of Service via unsolicited CNAME announcements
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68471
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-12 18:15 修改: 2026-01-16 16:53
|
| avahi-libs |
CVE-2026-24401 |
中危 |
0.7-27.el8_10.1 |
|
avahi: Avahi: Denial of Service via recursive CNAME record in mDNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24401
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-24 02:15 修改: 2026-02-12 15:58
|
| avahi-libs |
CVE-2026-34933 |
中危 |
0.7-27.el8_10.1 |
|
avahi: avahi-daemon: Avahi: Denial of Service via D-Bus method call
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34933
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-03 23:17 修改: 2026-04-13 17:26
|
| bzip2-libs |
CVE-2026-42250 |
中危 |
1.0.6-28.el8_10 |
|
bzip2: bzip2: Denial of Service in bzip2recover via a specially crafted file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42250
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-28 14:16 修改: 2026-06-05 08:16
|
| java-1.8.0-openjdk-headless |
CVE-2025-28164 |
中危 |
1:1.8.0.482.b08-1.el8 |
|
libpng: libpng: Denial of Service via buffer overflow in png_create_read_struct() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-28164
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-27 16:16 修改: 2026-03-04 19:42
|
| java-1.8.0-openjdk-headless |
CVE-2025-64505 |
中危 |
1:1.8.0.482.b08-1.el8 |
|
libpng: LIBPNG heap buffer overflow via malformed palette index
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64505
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-11-25 00:15 修改: 2025-11-26 18:28
|
| java-1.8.0-openjdk-headless |
CVE-2025-64506 |
中危 |
1:1.8.0.482.b08-1.el8 |
|
libpng: LIBPNG heap buffer over-read
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64506
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-11-25 00:15 修改: 2025-11-26 18:34
|
| java-1.8.0-openjdk-headless |
CVE-2026-22013 |
中危 |
1:1.8.0.482.b08-1.el8 |
1:1.8.0.492.b09-1.el8 |
openjdk: Improve Kerberos credentialing (Oracle CPU 2026-04)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22013
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-21 21:16 修改: 2026-04-27 12:15
|
| java-1.8.0-openjdk-headless |
CVE-2026-22021 |
中危 |
1:1.8.0.482.b08-1.el8 |
1:1.8.0.492.b09-1.el8 |
openjdk: Enhance certificate chain validation (Oracle CPU 2026-04)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22021
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-21 21:16 修改: 2026-04-27 12:18
|
| java-1.8.0-openjdk-headless |
CVE-2026-22695 |
中危 |
1:1.8.0.482.b08-1.el8 |
|
libpng: libpng: Denial of service and information disclosure via heap buffer over-read in png_image_finish_read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22695
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-12 23:15 修改: 2026-01-21 18:58
|
| java-1.8.0-openjdk-headless |
CVE-2026-22801 |
中危 |
1:1.8.0.482.b08-1.el8 |
|
libpng: libpng: Information disclosure and denial of service via integer truncation in simplified write API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22801
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-12 23:15 修改: 2026-01-21 18:58
|
| java-1.8.0-openjdk-headless |
CVE-2026-23865 |
中危 |
1:1.8.0.482.b08-1.el8 |
1:1.8.0.492.b09-1.el8 |
freetype: Information disclosure or denial of service via specially crafted font files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23865
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-02 17:16 修改: 2026-05-01 17:41
|
| java-1.8.0-openjdk-headless |
CVE-2026-33416 |
中危 |
1:1.8.0.482.b08-1.el8 |
|
libpng: libpng: Arbitrary code execution due to use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33416
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-26 17:16 修改: 2026-04-02 20:28
|
| java-1.8.0-openjdk-headless |
CVE-2026-33636 |
中危 |
1:1.8.0.482.b08-1.el8 |
|
libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33636
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-26 17:16 修改: 2026-04-02 18:42
|
| java-1.8.0-openjdk-headless |
CVE-2026-34757 |
中危 |
1:1.8.0.482.b08-1.el8 |
|
libpng: libpng: Information disclosure and data corruption via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34757
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-09 15:16 修改: 2026-05-13 23:07
|
| java-1.8.0-openjdk-headless |
CVE-2026-41254 |
中危 |
1:1.8.0.482.b08-1.el8 |
|
Little CMS: lcms2: mm2/Little-CMS: Little CMS: Information disclosure or denial of service via integer overflow in CubeSize
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41254
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-18 07:16 修改: 2026-05-07 18:16
|
| krb5-libs |
CVE-2026-11850 |
中危 |
1.18.2-32.el8_10 |
|
krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-11 10:16 修改: 2026-06-12 15:16
|
| krb5-libs |
CVE-2026-40355 |
中危 |
1.18.2-32.el8_10 |
1.18.2-34.el8_10 |
krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-28 06:16 修改: 2026-04-28 20:11
|
| krb5-libs |
CVE-2026-40356 |
中危 |
1.18.2-32.el8_10 |
1.18.2-34.el8_10 |
krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-28 07:16 修改: 2026-04-28 20:11
|
| coreutils-single |
CVE-2025-5278 |
中危 |
8.30-16.el8_10 |
|
coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5278
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-05-27 21:15 修改: 2026-05-19 17:16
|
| libarchive |
CVE-2024-57970 |
中危 |
3.3.3-6.el8_10 |
|
libarchive: heap buffer over-read in header_gnu_longlink
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-57970
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-02-16 04:15 修改: 2026-04-15 00:35
|
| libarchive |
CVE-2025-25724 |
中危 |
3.3.3-6.el8_10 |
|
libarchive: Buffer Overflow vulnerability in libarchive
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-25724
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-03-02 02:15 修改: 2025-07-17 15:56
|
| libarchive |
CVE-2025-60753 |
中危 |
3.3.3-6.el8_10 |
|
libarchive: bsdtar hangs and OOMs with zero-length pattern matches
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-60753
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-11-05 16:15 修改: 2026-02-04 21:19
|
| libarchive |
CVE-2026-4426 |
中危 |
3.3.3-6.el8_10 |
|
libarchive: libarchive: Denial of Service via malformed ISO file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4426
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-19 15:16 修改: 2026-05-03 21:16
|
| libarchive |
CVE-2026-5121 |
中危 |
3.3.3-6.el8_10 |
3.3.3-7.el8_10 |
libarchive: libarchive: Arbitrary code execution via integer overflow in ISO9660 image processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5121
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-30 08:16 修改: 2026-06-10 18:17
|
| libarchive |
CVE-2026-5745 |
中危 |
3.3.3-6.el8_10 |
|
libarchive: A NULL pointer dereference vulnerability exists in the ACL parser of libarchive
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5745
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-07 16:16 修改: 2026-05-03 15:15
|
| libblkid |
CVE-2026-27456 |
中危 |
2.32.1-48.el8_10 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| cups-libs |
CVE-2023-4504 |
中危 |
1:2.2.6-67.el8_10 |
|
libppd: Postscript Parsing Heap Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4504
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2023-09-21 23:15 修改: 2025-11-04 17:15
|
| libcurl |
CVE-2025-13034 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: Public key pinning bypass via QUIC and GnuTLS allows server impersonation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13034
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:54
|
| libcurl |
CVE-2025-14017 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
|
| libcurl |
CVE-2026-1965 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
|
| libcurl |
CVE-2026-3783 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
|
| libcurl |
CVE-2026-3784 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: curl: Unauthorized access due to improper HTTP proxy connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
|
| libcurl |
CVE-2026-3805 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: curl: Arbitrary code execution or Denial of Service via use-after-free in SMB request handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3805
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:08
|
| libcurl |
CVE-2026-4873 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: curl: Information disclosure due to incorrect TLS connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
|
| libcurl |
CVE-2026-5545 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
|
| libcurl |
CVE-2026-5773 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
|
| libcurl |
CVE-2026-6253 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
|
| libcurl |
CVE-2026-6429 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: libcurl: Credential leak via reused proxy connection during HTTP redirects
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
|
| libcurl |
CVE-2026-7168 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
|
| libgcrypt |
CVE-2019-12904 |
中危 |
1.8.5-7.el8_6 |
|
Libgcrypt: physical addresses being available to other processes leads to a flush-and-reload side-channel attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12904
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2019-06-20 00:15 修改: 2024-11-21 04:23
|
| libgcrypt |
CVE-2024-2236 |
中危 |
1.8.5-7.el8_6 |
|
libgcrypt: vulnerable to Marvin Attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2024-03-06 22:15 修改: 2026-04-15 00:35
|
| libgcrypt |
CVE-2026-41989 |
中危 |
1.8.5-7.el8_6 |
|
Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-23 05:16 修改: 2026-04-27 18:33
|
| libmount |
CVE-2026-27456 |
中危 |
2.32.1-48.el8_10 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| cups-libs |
CVE-2026-27447 |
中危 |
1:2.2.6-67.el8_10 |
|
cups: OpenPrinting CUPS: Authorization bypass via case-insensitive username comparison
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27447
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:20
|
| libsmartcols |
CVE-2026-27456 |
中危 |
2.32.1-48.el8_10 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libsolv |
CVE-2026-48864 |
中危 |
0.7.20-6.el8 |
|
libsolv: Heap buffer overflow in libsolv repopagestore via unchecked decompression of malicious .solv page data
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48864
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-26 17:16 修改: 2026-05-28 19:22
|
| libsolv |
CVE-2026-9149 |
中危 |
0.7.20-6.el8 |
|
libsolv: Heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9149
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-21 00:16 修改: 2026-06-02 01:21
|
| libssh |
CVE-2025-5351 |
中危 |
0.9.6-16.el8_10 |
|
libssh: Double Free Vulnerability in libssh Key Export Functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5351
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-07-04 09:15 修改: 2026-05-19 14:16
|
| libssh |
CVE-2025-8114 |
中危 |
0.9.6-16.el8_10 |
|
libssh: NULL Pointer Dereference in libssh KEX Session ID Calculation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8114
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-07-24 15:15 修改: 2026-05-19 14:16
|
| libssh |
CVE-2026-0964 |
中危 |
0.9.6-16.el8_10 |
|
libssh: Improper sanitation of paths received from SCP servers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0964
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
|
| libssh |
CVE-2026-0966 |
中危 |
0.9.6-16.el8_10 |
|
libssh: libssh: Denial of Service via zero-length input in ssh_get_hexa()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0966
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
|
| libssh |
CVE-2026-3731 |
中危 |
0.9.6-16.el8_10 |
|
libssh: libssh: Denial of Service via out-of-bounds read in SFTP extension name handler
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3731
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-08 11:15 修改: 2026-03-12 19:02
|
| libssh-config |
CVE-2025-5351 |
中危 |
0.9.6-16.el8_10 |
|
libssh: Double Free Vulnerability in libssh Key Export Functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5351
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-07-04 09:15 修改: 2026-05-19 14:16
|
| libssh-config |
CVE-2025-8114 |
中危 |
0.9.6-16.el8_10 |
|
libssh: NULL Pointer Dereference in libssh KEX Session ID Calculation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8114
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-07-24 15:15 修改: 2026-05-19 14:16
|
| libssh-config |
CVE-2026-0964 |
中危 |
0.9.6-16.el8_10 |
|
libssh: Improper sanitation of paths received from SCP servers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0964
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
|
| libssh-config |
CVE-2026-0966 |
中危 |
0.9.6-16.el8_10 |
|
libssh: libssh: Denial of Service via zero-length input in ssh_get_hexa()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0966
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
|
| libssh-config |
CVE-2026-3731 |
中危 |
0.9.6-16.el8_10 |
|
libssh: libssh: Denial of Service via out-of-bounds read in SFTP extension name handler
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3731
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-08 11:15 修改: 2026-03-12 19:02
|
| libuuid |
CVE-2026-27456 |
中危 |
2.32.1-48.el8_10 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libxml2 |
CVE-2025-9714 |
中危 |
2.9.7-21.el8_10.3 |
2.9.7-21.el8_10.4 |
libxslt: libxml2: Inifinite recursion at exsltDynMapFunction function in libexslt/dynamic.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9714
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-09-10 19:15 修改: 2026-05-12 13:17
|
| libxml2 |
CVE-2026-0990 |
中危 |
2.9.7-21.el8_10.3 |
|
libxml2: libxml2: Denial of Service via uncontrolled recursion in XML catalog processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0990
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-15 15:15 修改: 2026-04-22 10:16
|
| libxml2 |
CVE-2026-1757 |
中危 |
2.9.7-21.el8_10.3 |
|
libxml2: Memory Leak Leading to Local Denial of Service in xmllint Interactive Shell
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1757
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-02-02 13:15 修改: 2026-04-22 10:16
|
| libxml2 |
CVE-2026-6732 |
中危 |
2.9.7-21.el8_10.3 |
|
libxml2: libxml2: Denial of Service via crafted XSD-validated document
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6732
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-23 23:16 修改: 2026-05-15 14:36
|
| libzstd |
CVE-2022-4899 |
中危 |
1.4.4-1.el8 |
|
zstd: mysql: buffer overrun in util.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4899
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-03-31 20:15 修改: 2025-02-18 18:15
|
| openldap |
CVE-2026-22185 |
中危 |
2.4.46-21.el8_10 |
|
OpenLDAP: OpenLDAP LMDB: Denial of Service and Information Disclosure via Heap Buffer Underflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22185
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-07 21:16 修改: 2026-04-15 00:35
|
| cups-libs |
CVE-2026-34978 |
中危 |
1:2.2.6-67.el8_10 |
|
cups: OpenPrinting CUPS: Denial of Service via path traversal in RSS notifier
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34978
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:29
|
| openssl-libs |
CVE-2023-0466 |
中危 |
1:1.1.1k-15.el8_6 |
|
openssl: Certificate policy check not enabled
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0466
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-03-28 15:15 修改: 2025-02-19 18:15
|
| openssl-libs |
CVE-2026-28390 |
中危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2026-34182 |
中危 |
1:1.1.1k-15.el8_6 |
|
openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:13
|
| openssl-libs |
CVE-2026-34183 |
中危 |
1:1.1.1k-15.el8_6 |
|
openssl: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34183
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:12
|
| openssl-libs |
CVE-2026-42764 |
中危 |
1:1.1.1k-15.el8_6 |
|
openssl: NULL pointer dereference in QUIC server initial packet handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42764
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:25
|
| cups-libs |
CVE-2026-34979 |
中危 |
1:2.2.6-67.el8_10 |
|
cups: OpenPrinting CUPS: Denial of Service via heap-based buffer overflow in job attribute processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34979
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
|
| cups-libs |
CVE-2026-34980 |
中危 |
1:2.2.6-67.el8_10 |
|
cups: OpenPrinting CUPS: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34980
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
|
| cups-libs |
CVE-2026-34990 |
中危 |
1:2.2.6-67.el8_10 |
|
cups: OpenPrinting CUPS: Privilege escalation via arbitrary file overwrite due to coerced authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34990
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:15
|
| platform-python |
CVE-2025-0938 |
中危 |
3.6.8-73.el8_10 |
3.6.8-74.el8_10 |
python: cpython: URL parser allowed square brackets in domain names
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0938
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-01-31 18:15 修改: 2026-04-15 00:35
|
| platform-python |
CVE-2025-11468 |
中危 |
3.6.8-73.el8_10 |
|
cpython: Missing character filtering in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11468
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| platform-python |
CVE-2025-12781 |
中危 |
3.6.8-73.el8_10 |
|
cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-21 20:16 修改: 2026-02-02 17:25
|
| platform-python |
CVE-2025-13837 |
中危 |
3.6.8-73.el8_10 |
|
cpython: Out-of-memory when loading Plist
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13837
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-12-01 18:16 修改: 2026-03-03 15:16
|
| platform-python |
CVE-2025-15282 |
中危 |
3.6.8-73.el8_10 |
|
cpython: Header injection via newlines in data URL mediatype in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15282
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| platform-python |
CVE-2025-4516 |
中危 |
3.6.8-73.el8_10 |
|
cpython: python: CPython DecodeError Handling Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4516
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-05-15 14:15 修改: 2026-04-15 00:35
|
| platform-python |
CVE-2025-6069 |
中危 |
3.6.8-73.el8_10 |
|
cpython: Python HTMLParser quadratic complexity
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6069
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-06-17 14:15 修改: 2026-04-15 00:35
|
| platform-python |
CVE-2025-8291 |
中危 |
3.6.8-73.el8_10 |
|
cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8291
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-10-07 18:16 修改: 2026-04-15 00:35
|
| platform-python |
CVE-2026-0672 |
中危 |
3.6.8-73.el8_10 |
|
cpython: Header injection in http.cookies.Morsel in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0672
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| platform-python |
CVE-2026-1502 |
中危 |
3.6.8-73.el8_10 |
|
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-10 18:16 修改: 2026-06-04 15:16
|
| platform-python |
CVE-2026-3276 |
中危 |
3.6.8-73.el8_10 |
|
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-06-03 16:16 修改: 2026-06-16 15:16
|
| platform-python |
CVE-2026-3644 |
中危 |
3.6.8-73.el8_10 |
|
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-16 18:16 修改: 2026-06-04 19:30
|
| platform-python |
CVE-2026-4224 |
中危 |
3.6.8-73.el8_10 |
|
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-16 18:16 修改: 2026-06-04 19:33
|
| platform-python |
CVE-2026-42308 |
中危 |
3.6.8-73.el8_10 |
|
Pillow: python: Pillow: Denial of Service via integer overflow in font processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42308
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-05-09 06:16 修改: 2026-05-12 17:57
|
| platform-python |
CVE-2026-5713 |
中危 |
3.6.8-73.el8_10 |
|
python: Python: Information disclosure and arbitrary code execution via remote debugging with a malicious process.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5713
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-14 16:16 修改: 2026-06-10 19:16
|
| platform-python |
CVE-2026-6019 |
中危 |
3.6.8-73.el8_10 |
|
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-22 20:16 修改: 2026-05-28 19:15
|
| platform-python |
CVE-2026-7210 |
中危 |
3.6.8-73.el8_10 |
|
python: expat: Python/Expat: Denial of Service via crafted XML document
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-05-11 18:16 修改: 2026-06-15 17:51
|
| cups-libs |
CVE-2026-39314 |
中危 |
1:2.2.6-67.el8_10 |
|
cups: CUPS: Denial of Service via integer underflow in IPP attribute handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39314
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:13
|
| cups-libs |
CVE-2026-39316 |
中危 |
1:2.2.6-67.el8_10 |
|
cups: CUPS: Denial of Service and potential arbitrary code execution via use-after-free vulnerability when deleting temporary printers.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39316
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:08
|
| curl |
CVE-2025-13034 |
中危 |
7.61.1-34.el8_10.10 |
|
curl: Public key pinning bypass via QUIC and GnuTLS allows server impersonation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13034
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:54
|
| python3-libs |
CVE-2025-0938 |
中危 |
3.6.8-73.el8_10 |
3.6.8-74.el8_10 |
python: cpython: URL parser allowed square brackets in domain names
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0938
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-01-31 18:15 修改: 2026-04-15 00:35
|
| python3-libs |
CVE-2025-11468 |
中危 |
3.6.8-73.el8_10 |
|
cpython: Missing character filtering in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11468
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| python3-libs |
CVE-2025-12781 |
中危 |
3.6.8-73.el8_10 |
|
cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-21 20:16 修改: 2026-02-02 17:25
|
| python3-libs |
CVE-2025-13837 |
中危 |
3.6.8-73.el8_10 |
|
cpython: Out-of-memory when loading Plist
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13837
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-12-01 18:16 修改: 2026-03-03 15:16
|
| python3-libs |
CVE-2025-15282 |
中危 |
3.6.8-73.el8_10 |
|
cpython: Header injection via newlines in data URL mediatype in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15282
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| python3-libs |
CVE-2025-4516 |
中危 |
3.6.8-73.el8_10 |
|
cpython: python: CPython DecodeError Handling Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4516
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-05-15 14:15 修改: 2026-04-15 00:35
|
| python3-libs |
CVE-2025-6069 |
中危 |
3.6.8-73.el8_10 |
|
cpython: Python HTMLParser quadratic complexity
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6069
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-06-17 14:15 修改: 2026-04-15 00:35
|
| python3-libs |
CVE-2025-8291 |
中危 |
3.6.8-73.el8_10 |
|
cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8291
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-10-07 18:16 修改: 2026-04-15 00:35
|
| python3-libs |
CVE-2026-0672 |
中危 |
3.6.8-73.el8_10 |
|
cpython: Header injection in http.cookies.Morsel in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0672
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| python3-libs |
CVE-2026-1502 |
中危 |
3.6.8-73.el8_10 |
|
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-10 18:16 修改: 2026-06-04 15:16
|
| python3-libs |
CVE-2026-3276 |
中危 |
3.6.8-73.el8_10 |
|
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-06-03 16:16 修改: 2026-06-16 15:16
|
| python3-libs |
CVE-2026-3644 |
中危 |
3.6.8-73.el8_10 |
|
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-16 18:16 修改: 2026-06-04 19:30
|
| python3-libs |
CVE-2026-4224 |
中危 |
3.6.8-73.el8_10 |
|
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-16 18:16 修改: 2026-06-04 19:33
|
| python3-libs |
CVE-2026-42308 |
中危 |
3.6.8-73.el8_10 |
|
Pillow: python: Pillow: Denial of Service via integer overflow in font processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42308
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-05-09 06:16 修改: 2026-05-12 17:57
|
| python3-libs |
CVE-2026-5713 |
中危 |
3.6.8-73.el8_10 |
|
python: Python: Information disclosure and arbitrary code execution via remote debugging with a malicious process.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5713
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-14 16:16 修改: 2026-06-10 19:16
|
| python3-libs |
CVE-2026-6019 |
中危 |
3.6.8-73.el8_10 |
|
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-22 20:16 修改: 2026-05-28 19:15
|
| python3-libs |
CVE-2026-7210 |
中危 |
3.6.8-73.el8_10 |
|
python: expat: Python/Expat: Denial of Service via crafted XML document
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-05-11 18:16 修改: 2026-06-15 17:51
|
| python3-pip-wheel |
CVE-2023-45803 |
中危 |
9.0.3-24.el8 |
|
urllib3: Request body not stripped after redirect from 303 status changes request method to GET
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45803
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2023-10-17 20:15 修改: 2025-11-03 22:16
|
| python3-pip-wheel |
CVE-2025-50181 |
中危 |
9.0.3-24.el8 |
|
urllib3: urllib3 redirects are not disabled when retries are disabled on PoolManager instantiation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-50181
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-06-19 01:15 修改: 2025-12-22 19:15
|
| python3-pip-wheel |
CVE-2025-50182 |
中危 |
9.0.3-24.el8 |
|
urllib3: urllib3 does not control redirects in browsers and Node.js
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-50182
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-06-19 02:15 修改: 2025-12-22 19:15
|
| python3-pip-wheel |
CVE-2026-25645 |
中危 |
9.0.3-24.el8 |
|
requests: Requests: Security bypass due to predictable temporary file creation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25645
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-25 17:16 修改: 2026-03-30 14:23
|
| rpm |
CVE-2026-44604 |
中危 |
4.14.3-32.el8_10 |
|
rpm: Command injection in rpmuncompress doUntar() via unescaped archive top-level directory name in popen() shell command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44604
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-28 08:16 修改: 2026-05-28 13:44
|
| rpm-libs |
CVE-2026-44604 |
中危 |
4.14.3-32.el8_10 |
|
rpm: Command injection in rpmuncompress doUntar() via unescaped archive top-level directory name in popen() shell command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44604
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-28 08:16 修改: 2026-05-28 13:44
|
| sed |
CVE-2026-5958 |
中危 |
4.5-5.el8 |
|
sed: GNU sed TOCTOU race condition
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5958
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-20 12:16 修改: 2026-05-19 15:17
|
| systemd-libs |
CVE-2018-20839 |
中危 |
239-82.el8_10.15 |
|
systemd: mishandling of the current keyboard mode check leading to passwords being disclosed in cleartext to attacker
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20839
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2019-05-17 04:29 修改: 2025-05-05 14:14
|
| systemd-libs |
CVE-2025-4598 |
中危 |
239-82.el8_10.15 |
|
systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4598
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-05-30 14:15 修改: 2026-05-19 16:16
|
| systemd-libs |
CVE-2026-29111 |
中危 |
239-82.el8_10.15 |
|
systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
|
| systemd-libs |
CVE-2026-4105 |
中危 |
239-82.el8_10.15 |
|
systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-13 19:55 修改: 2026-04-30 17:16
|
| tar |
CVE-2005-2541 |
中危 |
2:1.30-11.el8_10 |
|
tar: does not properly warn the user when extracting setuid or setgid files
漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2005-08-10 04:00 修改: 2026-04-16 00:27
|
| tar |
CVE-2025-45582 |
中危 |
2:1.30-11.el8_10 |
|
tar: Tar path traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-45582
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-07-11 17:15 修改: 2025-11-02 01:15
|
| tar |
CVE-2025-64118 |
中危 |
2:1.30-11.el8_10 |
|
node-tar: tar: node-tar: Information disclosure via reading a truncated tar file
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64118
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-10-30 18:15 修改: 2026-04-15 00:35
|
| tar |
CVE-2026-33056 |
中危 |
2:1.30-11.el8_10 |
|
tar-rs: tar-rs: Arbitrary directory permission modification via crafted tar archive
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33056
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-20 08:16 修改: 2026-03-24 16:17
|
| tar |
CVE-2026-5704 |
中危 |
2:1.30-11.el8_10 |
|
tar: tar: Hidden file injection via crafted archives
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-06 16:16 修改: 2026-04-22 20:08
|
| xz-libs |
CVE-2026-34743 |
中危 |
5.2.4-4.el8_6 |
|
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-02 19:21 修改: 2026-04-15 17:33
|
| libtasn1 |
CVE-2018-1000654 |
低危 |
4.13-5.el8_10 |
|
libtasn1: Infinite loop in _asn1_expand_object_id(ptree) leads to memory exhaustion
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000654
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2018-08-20 19:31 修改: 2024-11-21 03:40
|
| libtasn1 |
CVE-2025-13151 |
低危 |
4.13-5.el8_10 |
|
libtasn1: libtasn1: Denial of Service via stack-based buffer overflow in asn1_expend_octet_string
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13151
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-07 22:15 修改: 2026-02-02 19:27
|
| curl |
CVE-2026-6276 |
低危 |
7.61.1-34.el8_10.10 |
|
curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
|
| glib2 |
CVE-2023-29499 |
低危 |
2.56.4-168.el8_10 |
|
glib: GVariant offset table entry size is not checked in is_normal()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29499
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-09-14 20:15 修改: 2024-11-21 07:57
|
| glib2 |
CVE-2023-32611 |
低危 |
2.56.4-168.el8_10 |
|
glib: g_variant_byteswap() can take a long time with some non-normal inputs
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32611
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-09-14 20:15 修改: 2024-11-21 08:03
|
| glib2 |
CVE-2023-32636 |
低危 |
2.56.4-168.el8_10 |
|
glib: Timeout in fuzz_variant_text
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32636
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-09-14 20:15 修改: 2024-11-21 08:03
|
| glib2 |
CVE-2023-32665 |
低危 |
2.56.4-168.el8_10 |
|
glib: GVariant deserialisation does not match spec for non-normal data
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32665
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-09-14 20:15 修改: 2024-11-21 08:03
|
| libxml2 |
CVE-2023-45322 |
低危 |
2.9.7-21.el8_10.3 |
|
libxml2: use-after-free in xmlUnlinkNode() in tree.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45322
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-10-06 22:15 修改: 2025-11-03 21:16
|
| libxml2 |
CVE-2024-34459 |
低危 |
2.9.7-21.el8_10.3 |
|
libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34459
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2024-05-14 15:39 修改: 2025-11-04 22:16
|
| libxml2 |
CVE-2025-27113 |
低危 |
2.9.7-21.el8_10.3 |
|
libxml2: NULL Pointer Dereference in libxml2 xmlPatMatch
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27113
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-02-18 23:15 修改: 2025-11-03 22:18
|
| libxml2 |
CVE-2025-6170 |
低危 |
2.9.7-21.el8_10.3 |
|
libxml2: Stack Buffer Overflow in xmllint Interactive Shell Command Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6170
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-06-16 16:15 修改: 2026-06-02 14:16
|
| libxml2 |
CVE-2026-0989 |
低危 |
2.9.7-21.el8_10.3 |
|
libxml2: Unbounded RelaxNG Include Recursion Leading to Stack Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0989
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-15 15:15 修改: 2026-04-22 10:16
|
| libxml2 |
CVE-2026-0992 |
低危 |
2.9.7-21.el8_10.3 |
|
libxml2: libxml2: Denial of Service via crafted XML catalogs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0992
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-15 15:15 修改: 2026-04-22 10:16
|
| glib2 |
CVE-2025-3360 |
低危 |
2.56.4-168.el8_10 |
|
glibc: GLib prior to 2.82.5 is vulnerable to integer overflow and buffer under-read when parsing a very long invalid ISO 8601 timestamp with g_date_time_new_from_iso8601().
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3360
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-04-07 13:15 修改: 2026-04-15 00:35
|
| libzstd |
CVE-2021-24032 |
低危 |
1.4.4-1.el8 |
|
zstd: Race condition allows attacker to access world-readable destination file
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-24032
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2021-03-04 21:15 修改: 2024-11-21 05:52
|
| ncurses-base |
CVE-2018-19211 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2018-11-12 19:29 修改: 2024-11-21 03:57
|
| ncurses-base |
CVE-2020-19185 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19185
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-08-22 19:15 修改: 2024-11-21 05:09
|
| ncurses-base |
CVE-2020-19186 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19186
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-08-22 19:15 修改: 2024-11-21 05:09
|
| ncurses-base |
CVE-2020-19187 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19187
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-08-22 19:15 修改: 2024-11-21 05:09
|
| ncurses-base |
CVE-2020-19188 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19188
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-08-22 19:16 修改: 2024-11-21 05:09
|
| ncurses-base |
CVE-2020-19189 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-08-22 19:16 修改: 2024-11-21 05:09
|
| ncurses-base |
CVE-2020-19190 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19190
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-08-22 19:16 修改: 2024-11-21 05:09
|
| ncurses-base |
CVE-2021-39537 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2021-09-20 16:15 修改: 2024-11-21 06:19
|
| ncurses-base |
CVE-2023-50495 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
|
| ncurses-libs |
CVE-2018-19211 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2018-11-12 19:29 修改: 2024-11-21 03:57
|
| ncurses-libs |
CVE-2020-19185 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19185
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-08-22 19:15 修改: 2024-11-21 05:09
|
| ncurses-libs |
CVE-2020-19186 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19186
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-08-22 19:15 修改: 2024-11-21 05:09
|
| ncurses-libs |
CVE-2020-19187 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19187
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-08-22 19:15 修改: 2024-11-21 05:09
|
| ncurses-libs |
CVE-2020-19188 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19188
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-08-22 19:16 修改: 2024-11-21 05:09
|
| ncurses-libs |
CVE-2020-19189 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-08-22 19:16 修改: 2024-11-21 05:09
|
| ncurses-libs |
CVE-2020-19190 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19190
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-08-22 19:16 修改: 2024-11-21 05:09
|
| ncurses-libs |
CVE-2021-39537 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2021-09-20 16:15 修改: 2024-11-21 06:19
|
| ncurses-libs |
CVE-2023-50495 |
低危 |
6.1-10.20180224.el8 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
|
| nss |
CVE-2020-12413 |
低危 |
3.112.0-4.el8_10 |
|
nss: Information exposure when DH secret are reused across multiple TLS connections
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12413
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2023-02-16 22:15 修改: 2025-03-19 16:15
|
| nss |
CVE-2024-7531 |
低危 |
3.112.0-4.el8_10 |
|
mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2024-08-06 13:15 修改: 2025-03-19 16:15
|
| nss-softokn |
CVE-2020-12413 |
低危 |
3.112.0-4.el8_10 |
|
nss: Information exposure when DH secret are reused across multiple TLS connections
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12413
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2023-02-16 22:15 修改: 2025-03-19 16:15
|
| nss-softokn |
CVE-2024-7531 |
低危 |
3.112.0-4.el8_10 |
|
mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2024-08-06 13:15 修改: 2025-03-19 16:15
|
| nss-softokn-freebl |
CVE-2020-12413 |
低危 |
3.112.0-4.el8_10 |
|
nss: Information exposure when DH secret are reused across multiple TLS connections
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12413
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2023-02-16 22:15 修改: 2025-03-19 16:15
|
| nss-softokn-freebl |
CVE-2024-7531 |
低危 |
3.112.0-4.el8_10 |
|
mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2024-08-06 13:15 修改: 2025-03-19 16:15
|
| nss-sysinit |
CVE-2020-12413 |
低危 |
3.112.0-4.el8_10 |
|
nss: Information exposure when DH secret are reused across multiple TLS connections
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12413
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2023-02-16 22:15 修改: 2025-03-19 16:15
|
| nss-sysinit |
CVE-2024-7531 |
低危 |
3.112.0-4.el8_10 |
|
mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2024-08-06 13:15 修改: 2025-03-19 16:15
|
| nss-util |
CVE-2020-12413 |
低危 |
3.112.0-4.el8_10 |
|
nss: Information exposure when DH secret are reused across multiple TLS connections
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12413
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2023-02-16 22:15 修改: 2025-03-19 16:15
|
| nss-util |
CVE-2024-7531 |
低危 |
3.112.0-4.el8_10 |
|
mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2024-08-06 13:15 修改: 2025-03-19 16:15
|
| glib2 |
CVE-2025-7039 |
低危 |
2.56.4-168.el8_10 |
|
glib: Buffer Under-read on GLib through glib/gfileutils.c via get_tmp_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7039
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-09-03 02:15 修改: 2026-06-02 14:16
|
| libarchive |
CVE-2018-1000879 |
低危 |
3.3.3-6.el8_10 |
|
libarchive: NULL pointer dereference in ACL parser resulting in a denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000879
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2018-12-20 17:29 修改: 2024-11-21 03:40
|
| libarchive |
CVE-2018-1000880 |
低危 |
3.3.3-6.el8_10 |
|
libarchive: Improper input validation in WARC parser resulting in a denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000880
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2018-12-20 17:29 修改: 2024-11-21 03:40
|
| libarchive |
CVE-2025-1632 |
低危 |
3.3.3-6.el8_10 |
|
libarchive: null pointer dereference in bsdunzip.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1632
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-02-24 14:15 修改: 2025-03-25 15:41
|
| libarchive |
CVE-2025-5915 |
低危 |
3.3.3-6.el8_10 |
|
libarchive: Heap buffer over read in copy_from_lzss_window() at archive_read_support_format_rar.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5915
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-06-09 20:15 修改: 2026-01-08 04:15
|
| libarchive |
CVE-2025-5916 |
低危 |
3.3.3-6.el8_10 |
|
libarchive: Integer overflow while reading warc files at archive_read_support_format_warc.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5916
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-06-09 20:15 修改: 2025-12-12 01:15
|
| libarchive |
CVE-2025-5917 |
低危 |
3.3.3-6.el8_10 |
|
libarchive: Off by one error in build_ustar_entry_name() at archive_write_set_format_pax.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5917
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-06-09 20:15 修改: 2025-12-12 01:15
|
| openssl-libs |
CVE-2023-0464 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: Denial of service by excessive resource usage in verifying X509 policy constraints
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-03-22 17:15 修改: 2025-05-05 16:15
|
| openssl-libs |
CVE-2023-0465 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: Invalid certificate policies in leaf certificates are silently ignored
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-03-28 15:15 修改: 2025-02-18 21:15
|
| openssl-libs |
CVE-2023-2650 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: Possible DoS translating ASN.1 object identifiers
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-05-30 14:15 修改: 2025-03-19 16:15
|
| openssl-libs |
CVE-2024-0727 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: denial of service via null dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2024-01-26 09:15 修改: 2026-05-12 12:16
|
| openssl-libs |
CVE-2024-13176 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: Timing side-channel in ECDSA signature computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13176
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-01-20 14:15 修改: 2026-04-15 00:35
|
| openssl-libs |
CVE-2024-2511 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: Unbounded memory growth with session handling in TLSv1.3
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2024-04-08 14:15 修改: 2026-05-12 12:16
|
| openssl-libs |
CVE-2024-41996 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2024-08-26 06:15 修改: 2026-05-12 12:17
|
| openssl-libs |
CVE-2024-4741 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: Use After Free with SSL_free_buffers
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2024-11-13 11:15 修改: 2026-04-15 00:35
|
| openssl-libs |
CVE-2025-15468 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15468
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:38
|
| openssl-libs |
CVE-2025-15469 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Data integrity bypass in `openssl dgst` command due to silent truncation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15469
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:37
|
| openssl-libs |
CVE-2025-68160 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2025-69418 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2025-69420 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Denial of Service via malformed TimeStamp Response
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2025-69421 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2026-22795 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2026-22796 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2026-28387 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2026-28388 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2026-28389 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2026-31789 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2026-34180 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:13
|
| openssl-libs |
CVE-2026-34181 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34181
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:13
|
| openssl-libs |
CVE-2026-42766 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:25
|
| openssl-libs |
CVE-2026-42767 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:58
|
| openssl-libs |
CVE-2026-42768 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42768
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:58
|
| openssl-libs |
CVE-2026-42769 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42769
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:26
|
| openssl-libs |
CVE-2026-42770 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: FFC-DH Peer Validation Uses Attacker-Supplied q
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:58
|
| openssl-libs |
CVE-2026-45446 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:57
|
| openssl-libs |
CVE-2026-7383 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:46
|
| openssl-libs |
CVE-2026-9076 |
低危 |
1:1.1.1k-15.el8_6 |
|
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:45
|
| pcre2 |
CVE-2022-41409 |
低危 |
10.32-3.el8_6 |
|
pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-07-18 14:15 修改: 2024-11-21 07:23
|
| libarchive |
CVE-2025-5918 |
低危 |
3.3.3-6.el8_10 |
|
libarchive: Reading past EOF may be triggered for piped file streams
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5918
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-06-09 20:15 修改: 2025-08-15 18:35
|
| glib2 |
CVE-2026-0988 |
低危 |
2.56.4-168.el8_10 |
|
glib: GLib: Denial of Service via Integer Overflow in g_buffered_input_stream_peek()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0988
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-21 12:15 修改: 2026-04-24 21:16
|
| glib2 |
CVE-2026-1485 |
低危 |
2.56.4-168.el8_10 |
|
Glib: Glib: Local denial of service via buffer underflow in content type parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1485
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-27 14:15 修改: 2026-04-15 00:35
|
| dbus-libs |
CVE-2020-35512 |
低危 |
1:1.12.8-27.el8_10 |
|
dbus: users with the same numeric UID could lead to use-after-free and undefined behaviour
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35512
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2021-02-15 17:15 修改: 2024-11-21 05:27
|
| elfutils-libelf |
CVE-2024-25260 |
低危 |
0.190-2.el8 |
|
elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2024-02-20 18:15 修改: 2025-04-25 20:42
|
| avahi-libs |
CVE-2017-6519 |
低危 |
0.7-27.el8_10.1 |
|
avahi: Multicast DNS responds to unicast queries outside of local network
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6519
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2017-05-01 01:59 修改: 2026-05-13 00:24
|
| gnutls |
CVE-2021-4209 |
低危 |
3.6.16-8.el8_10.4 |
|
GnuTLS: Null pointer dereference in MD_UPDATE
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4209
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2022-08-24 16:15 修改: 2024-11-21 06:37
|
| gnutls |
CVE-2025-9820 |
低危 |
3.6.16-8.el8_10.4 |
3.6.16-8.el8_10.5 |
gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9820
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-26 20:16 修改: 2026-05-12 13:17
|
| gnutls |
CVE-2026-3832 |
低危 |
3.6.16-8.el8_10.4 |
|
gnutls: gnutls: Security bypass allows acceptance of revoked server certificates via crafted OCSP response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3832
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-30 18:16 修改: 2026-06-02 17:16
|
| gnutls |
CVE-2026-5419 |
低危 |
3.6.16-8.el8_10.4 |
|
guntls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5419
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-06-01 21:16 修改: 2026-06-02 17:16
|
| cups-libs |
CVE-2021-25317 |
低危 |
1:2.2.6-67.el8_10 |
|
cups: insecure permissions of /var/log/cups allows for symlink attacks
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-25317
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2021-05-05 10:15 修改: 2024-11-21 05:54
|
| cups-libs |
CVE-2026-41079 |
低危 |
1:2.2.6-67.el8_10 |
|
cups: CUPS: Information disclosure via crafted SNMP response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41079
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-24 17:16 修改: 2026-04-27 13:40
|
| glibc |
CVE-2026-4438 |
低危 |
2.28-251.el8_10.31 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:40
|
| curl |
CVE-2023-27534 |
低危 |
7.61.1-34.el8_10.10 |
|
curl: SFTP path ~ resolving discrepancy
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-03-30 20:15 修改: 2025-04-23 17:16
|
| curl |
CVE-2024-11053 |
低危 |
7.61.1-34.el8_10.10 |
|
curl: curl netrc password leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2024-12-11 08:15 修改: 2025-11-03 21:16
|
| libcurl |
CVE-2023-27534 |
低危 |
7.61.1-34.el8_10.10 |
|
curl: SFTP path ~ resolving discrepancy
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-03-30 20:15 修改: 2025-04-23 17:16
|
| libcurl |
CVE-2024-11053 |
低危 |
7.61.1-34.el8_10.10 |
|
curl: curl netrc password leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2024-12-11 08:15 修改: 2025-11-03 21:16
|
| libcurl |
CVE-2024-7264 |
低危 |
7.61.1-34.el8_10.10 |
|
curl: libcurl: ASN.1 date parser overread
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2024-07-31 08:15 修改: 2025-11-03 23:17
|
| libcurl |
CVE-2025-14524 |
低危 |
7.61.1-34.el8_10.10 |
|
curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
|
| libcurl |
CVE-2025-15079 |
低危 |
7.61.1-34.el8_10.10 |
|
curl: Host verification bypass during SSH transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:50
|
| platform-python |
CVE-2019-9674 |
低危 |
3.6.8-73.el8_10 |
|
python: Nested zip file (Zip bomb) vulnerability in Lib/zipfile.py
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9674
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2020-02-04 15:15 修改: 2025-12-31 00:55
|
| platform-python |
CVE-2024-0397 |
低危 |
3.6.8-73.el8_10 |
|
cpython: python: Memory race condition in ssl.SSLContext certificate store methods
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2024-06-17 16:15 修改: 2026-04-15 00:35
|
| platform-python |
CVE-2024-7592 |
低危 |
3.6.8-73.el8_10 |
|
cpython: python: Uncontrolled CPU resource consumption when in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2024-08-19 19:15 修改: 2025-11-03 23:17
|
| platform-python |
CVE-2025-1795 |
低危 |
3.6.8-73.el8_10 |
|
python: Mishandling of comma during folding and unicode-encoding of email headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1795
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-02-28 19:15 修改: 2026-04-15 00:35
|
| platform-python |
CVE-2025-6075 |
低危 |
3.6.8-73.el8_10 |
|
python: Quadratic complexity in os.path.expandvars() with user-controlled template
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6075
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-10-31 17:15 修改: 2026-02-04 19:05
|
| platform-python |
CVE-2026-2297 |
低危 |
3.6.8-73.el8_10 |
|
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-04 23:16 修改: 2026-05-01 16:16
|
| platform-python |
CVE-2026-3479 |
低危 |
3.6.8-73.el8_10 |
|
python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-18 19:16 修改: 2026-04-07 18:16
|
| procps-ng |
CVE-2018-1121 |
低危 |
3.3.15-14.el8 |
|
procps: process hiding through race condition enumerating /proc
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1121
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2018-06-13 20:29 修改: 2024-11-21 03:59
|
| libcurl |
CVE-2025-15224 |
低危 |
7.61.1-34.el8_10.10 |
|
curl: libssh key passphrase bypass without agent set
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:47
|
| libcurl |
CVE-2026-6276 |
低危 |
7.61.1-34.el8_10.10 |
|
curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
|
| libgcc |
CVE-2018-20657 |
低危 |
8.5.0-28.el8_10 |
|
libiberty: Memory leak in demangle_template function resulting in a denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2019-01-02 14:29 修改: 2024-11-21 04:01
|
| libgcc |
CVE-2019-14250 |
低危 |
8.5.0-28.el8_10 |
|
binutils: integer overflow in simple-object-elf.c leads to a heap-based buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14250
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2019-07-24 04:15 修改: 2024-11-21 04:26
|
| libgcc |
CVE-2022-27943 |
低危 |
8.5.0-28.el8_10 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
|
| expat |
CVE-2025-66382 |
低危 |
2.5.0-1.el8_10 |
|
libexpat: libexpat: Denial of service via crafted file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-11-28 07:15 修改: 2026-06-02 14:16
|
| expat |
CVE-2026-24515 |
低危 |
2.5.0-1.el8_10 |
|
libexpat: libexpat null pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24515
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-01-23 08:16 修改: 2026-06-02 14:16
|
| expat |
CVE-2026-41080 |
低危 |
2.5.0-1.el8_10 |
|
libexpat: expat: libexpat: Denial of Service via hash flooding with crafted XML
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41080
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-16 17:16 修改: 2026-06-12 18:43
|
| libgcrypt |
CVE-2026-41990 |
低危 |
1.8.5-7.el8_6 |
|
Libgcrypt: Libgcrypt: Denial of Service or data integrity issues from missing bounds check during Dilithium signing.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41990
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-04-23 05:16 修改: 2026-04-27 18:33
|
| glibc-common |
CVE-2026-4438 |
低危 |
2.28-251.el8_10.31 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:40
|
| curl |
CVE-2024-7264 |
低危 |
7.61.1-34.el8_10.10 |
|
curl: libcurl: ASN.1 date parser overread
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2024-07-31 08:15 修改: 2025-11-03 23:17
|
| file-libs |
CVE-2019-8906 |
低危 |
5.33-27.el8_10 |
|
file: out-of-bounds read in do_core_note in readelf.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8906
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2019-02-18 17:29 修改: 2024-11-21 04:50
|
| gawk |
CVE-2023-4156 |
低危 |
4.2.1-4.el8 |
|
gawk: heap out of bound read in builtin.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4156
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-09-25 18:15 修改: 2024-11-21 08:34
|
| curl |
CVE-2025-14524 |
低危 |
7.61.1-34.el8_10.10 |
|
curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
|
| curl |
CVE-2025-15079 |
低危 |
7.61.1-34.el8_10.10 |
|
curl: Host verification bypass during SSH transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:50
|
| glibc-minimal-langpack |
CVE-2026-4438 |
低危 |
2.28-251.el8_10.31 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:40
|
| curl |
CVE-2025-15224 |
低危 |
7.61.1-34.el8_10.10 |
|
curl: libssh key passphrase bypass without agent set
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:47
|
| java-1.8.0-openjdk-headless |
CVE-2026-22007 |
低危 |
1:1.8.0.482.b08-1.el8 |
1:1.8.0.492.b09-1.el8 |
openjdk: Enhance crypto algorithm support (Oracle CPU 2026-04)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22007
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-21 21:16 修改: 2026-04-27 12:14
|
| java-1.8.0-openjdk-headless |
CVE-2026-22018 |
低危 |
1:1.8.0.482.b08-1.el8 |
1:1.8.0.492.b09-1.el8 |
openjdk: Enhance Zip file reading (Oracle CPU 2026-04)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22018
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-21 21:16 修改: 2026-04-27 12:17
|
| libssh |
CVE-2025-4878 |
低危 |
0.9.6-16.el8_10 |
|
libssh: Use of uninitialized variable in privatekey_from_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4878
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-07-22 15:15 修改: 2026-05-19 14:16
|
| python3-libs |
CVE-2019-9674 |
低危 |
3.6.8-73.el8_10 |
|
python: Nested zip file (Zip bomb) vulnerability in Lib/zipfile.py
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9674
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2020-02-04 15:15 修改: 2025-12-31 00:55
|
| python3-libs |
CVE-2024-0397 |
低危 |
3.6.8-73.el8_10 |
|
cpython: python: Memory race condition in ssl.SSLContext certificate store methods
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2024-06-17 16:15 修改: 2026-04-15 00:35
|
| python3-libs |
CVE-2024-7592 |
低危 |
3.6.8-73.el8_10 |
|
cpython: python: Uncontrolled CPU resource consumption when in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2024-08-19 19:15 修改: 2025-11-03 23:17
|
| python3-libs |
CVE-2025-1795 |
低危 |
3.6.8-73.el8_10 |
|
python: Mishandling of comma during folding and unicode-encoding of email headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1795
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-02-28 19:15 修改: 2026-04-15 00:35
|
| python3-libs |
CVE-2025-6075 |
低危 |
3.6.8-73.el8_10 |
|
python: Quadratic complexity in os.path.expandvars() with user-controlled template
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6075
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2025-10-31 17:15 修改: 2026-02-04 19:05
|
| python3-libs |
CVE-2026-2297 |
低危 |
3.6.8-73.el8_10 |
|
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-04 23:16 修改: 2026-05-01 16:16
|
| python3-libs |
CVE-2026-3479 |
低危 |
3.6.8-73.el8_10 |
|
python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-03-18 19:16 修改: 2026-04-07 18:16
|
| libssh |
CVE-2025-8277 |
低危 |
0.9.6-16.el8_10 |
|
libssh: Memory Exhaustion via Repeated Key Exchange in libssh
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8277
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-09-09 12:15 修改: 2026-05-19 14:16
|
| libssh |
CVE-2026-0965 |
低危 |
0.9.6-16.el8_10 |
|
libssh: libssh: Denial of Service via improper configuration file handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0965
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
|
| libssh |
CVE-2026-0967 |
低危 |
0.9.6-16.el8_10 |
|
libssh: libssh: Denial of Service via inefficient regular expression processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0967
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
|
| libssh |
CVE-2026-0968 |
低危 |
0.9.6-16.el8_10 |
|
libssh: libssh: Denial of Service due to malformed SFTP message
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0968
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
|
| python3-pip-wheel |
CVE-2018-20225 |
低危 |
9.0.3-24.el8 |
|
python-pip: when --extra-index-url option is used and package does not already exist in the public index, the installation of malicious package with arbitrary version number is possible.
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20225
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2020-05-08 18:15 修改: 2026-04-15 21:17
|
| java-1.8.0-openjdk-headless |
CVE-2026-27171 |
低危 |
1:1.8.0.482.b08-1.el8 |
|
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-02-18 04:16 修改: 2026-03-25 21:27
|
| java-1.8.0-openjdk-headless |
CVE-2026-34268 |
低危 |
1:1.8.0.482.b08-1.el8 |
1:1.8.0.492.b09-1.el8 |
openjdk: Enhance key generation (Oracle CPU 2026-04)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34268
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2026-04-21 21:16 修改: 2026-04-27 12:19
|
| gnupg2 |
CVE-2022-3219 |
低危 |
2.2.20-4.el8_10 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
|
| sqlite-libs |
CVE-2019-19244 |
低危 |
3.26.0-20.el8_10 |
|
sqlite: allows a crash if a sub-select uses both DISTINCT and window functions and also has certain ORDER BY usage
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19244
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2019-11-25 20:15 修改: 2024-11-21 04:34
|
| sqlite-libs |
CVE-2019-9936 |
低危 |
3.26.0-20.el8_10 |
|
sqlite: heap-based buffer over-read in function fts5HashEntrySort in sqlite3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9936
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2019-03-22 08:29 修改: 2024-11-21 04:52
|
| sqlite-libs |
CVE-2019-9937 |
低危 |
3.26.0-20.el8_10 |
|
sqlite: null-pointer dereference in function fts5ChunkIterate in sqlite3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9937
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2019-03-22 08:29 修改: 2024-11-21 04:52
|
| sqlite-libs |
CVE-2024-0232 |
低危 |
3.26.0-20.el8_10 |
|
sqlite: use-after-free bug in jsonParseAddNodeArray
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0232
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2024-01-16 14:15 修改: 2024-11-21 08:46
|
| sqlite-libs |
CVE-2025-70873 |
低危 |
3.26.0-20.el8_10 |
|
sqlite: SQLite: Information Disclosure via Crafted ZIP File
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-70873
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-12 19:16 修改: 2026-04-16 21:15
|
| gnupg2 |
CVE-2025-30258 |
低危 |
2.2.20-4.el8_10 |
|
gnupg: verification DoS due to a malicious subkey in the keyring
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
|
| gnupg2 |
CVE-2026-24883 |
低危 |
2.2.20-4.el8_10 |
|
GnuPG: GnuPG: Denial of service due to specially crafted signature packet
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24883
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-01-27 19:16 修改: 2026-02-06 18:06
|
| libssh-config |
CVE-2025-4878 |
低危 |
0.9.6-16.el8_10 |
|
libssh: Use of uninitialized variable in privatekey_from_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4878
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-07-22 15:15 修改: 2026-05-19 14:16
|
| libssh-config |
CVE-2025-8277 |
低危 |
0.9.6-16.el8_10 |
|
libssh: Memory Exhaustion via Repeated Key Exchange in libssh
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8277
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2025-09-09 12:15 修改: 2026-05-19 14:16
|
| systemd-libs |
CVE-2021-3997 |
低危 |
239-82.el8_10.15 |
|
systemd: Uncontrolled recursion in systemd-tmpfiles when removing files
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2022-08-23 20:15 修改: 2024-11-21 06:23
|
| libssh-config |
CVE-2026-0965 |
低危 |
0.9.6-16.el8_10 |
|
libssh: libssh: Denial of Service via improper configuration file handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0965
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
|
| libssh-config |
CVE-2026-0967 |
低危 |
0.9.6-16.el8_10 |
|
libssh: libssh: Denial of Service via inefficient regular expression processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0967
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
|
| libssh-config |
CVE-2026-0968 |
低危 |
0.9.6-16.el8_10 |
|
libssh: libssh: Denial of Service due to malformed SFTP message
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0968
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
|
| libstdc++ |
CVE-2018-20657 |
低危 |
8.5.0-28.el8_10 |
|
libiberty: Memory leak in demangle_template function resulting in a denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2019-01-02 14:29 修改: 2024-11-21 04:01
|
| libstdc++ |
CVE-2019-14250 |
低危 |
8.5.0-28.el8_10 |
|
binutils: integer overflow in simple-object-elf.c leads to a heap-based buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14250
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2019-07-24 04:15 修改: 2024-11-21 04:26
|
| tar |
CVE-2019-9923 |
低危 |
2:1.30-11.el8_10 |
|
tar: null-pointer dereference in pax_decode_header in sparse.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9923
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2019-03-22 08:29 修改: 2025-08-06 22:15
|
| tar |
CVE-2021-20193 |
低危 |
2:1.30-11.el8_10 |
|
tar: Memory leak in read_header() in list.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20193
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2021-03-26 17:15 修改: 2025-05-05 14:15
|
| tar |
CVE-2023-39804 |
低危 |
2:1.30-11.el8_10 |
|
tar: Incorrectly handled extension attributes in PAX archives can lead to a crash
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39804
镜像层: sha256:c183d5fa85a967dc2ea307a9c32d2b1a5844139a51aab301bd53b086a4381bda
发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:15
|
| libstdc++ |
CVE-2022-27943 |
低危 |
8.5.0-28.el8_10 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
|
| zlib |
CVE-2026-27171 |
低危 |
1.2.11-25.el8 |
|
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:11a0618d1b83560f20290371215d5bc2334240d104f4ef619716bd638c055bba
发布日期: 2026-02-18 04:16 修改: 2026-03-25 21:27
|