| apk-tools |
CVE-2021-36159 |
严重 |
2.9.1-r0 |
2.12.6-r0 |
libfetch: an out of boundary read while libfetch uses strtol to parse the relevant numbers into address bytes leads to information leak or crash
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36159
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2021-08-03 14:15 修改: 2023-11-07 03:36
|
| busybox |
CVE-2022-48174 |
严重 |
1.27.2-r7 |
1.36.1-r2 |
busybox: stack overflow vulnerability in ash.c leads to arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48174
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2023-08-22 19:16 修改: 2023-08-28 18:53
|
| libbsd |
CVE-2019-20367 |
严重 |
0.8.6-r1 |
0.10.0-r0 |
nlist.c in libbsd before 0.10.0 has an out-of-bounds read during a com ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20367
镜像层: sha256:391dcdc225e2da927566fe9a8d6fb8d59090258c8e909c91cd69a6a448e15a3c
发布日期: 2020-01-08 17:15 修改: 2023-11-07 03:09
|
| musl |
CVE-2019-14697 |
严重 |
1.1.18-r5 |
1.1.23-r2 |
musl libc through 1.1.23 has an x87 floating-point stack adjustment im ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14697
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2019-08-06 16:15 修改: 2023-03-03 17:43
|
| musl-utils |
CVE-2019-14697 |
严重 |
1.1.18-r5 |
1.1.23-r2 |
musl libc through 1.1.23 has an x87 floating-point stack adjustment im ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14697
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2019-08-06 16:15 修改: 2023-03-03 17:43
|
| zlib |
CVE-2022-37434 |
严重 |
1.2.11-r1 |
1.2.12-r2 |
zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37434
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2022-08-05 07:15 修改: 2023-07-19 00:56
|
| busybox |
CVE-2021-28831 |
高危 |
1.27.2-r7 |
1.33.0-r5 |
busybox: invalid free or segmentation fault via malformed gzip data
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28831
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2021-03-19 05:15 修改: 2023-11-07 03:32
|
| busybox |
CVE-2021-42378 |
高危 |
1.27.2-r7 |
1.34.0-r0 |
busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_i()
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42378
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
|
| busybox |
CVE-2021-42379 |
高危 |
1.27.2-r7 |
1.34.0-r0 |
busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the next_input_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42379
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
|
| busybox |
CVE-2021-42380 |
高危 |
1.27.2-r7 |
1.34.0-r0 |
busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the clrvar()
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42380
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
|
| busybox |
CVE-2021-42381 |
高危 |
1.27.2-r7 |
1.34.0-r0 |
busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the hash_init()
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42381
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
|
| busybox |
CVE-2021-42382 |
高危 |
1.27.2-r7 |
1.34.0-r0 |
busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_s()
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42382
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
|
| busybox |
CVE-2021-42383 |
高危 |
1.27.2-r7 |
1.34.0-r0 |
busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate()
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42383
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
|
| busybox |
CVE-2021-42384 |
高危 |
1.27.2-r7 |
1.34.0-r0 |
busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the handle_special()
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42384
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
|
| busybox |
CVE-2021-42385 |
高危 |
1.27.2-r7 |
1.34.0-r0 |
busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate()
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42385
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
|
| busybox |
CVE-2021-42386 |
高危 |
1.27.2-r7 |
1.34.0-r0 |
busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the nvalloc()
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42386
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
|
| busybox |
CVE-2022-28391 |
高危 |
1.27.2-r7 |
1.35.0-r7 |
busybox: remote attackers may execute arbitrary code if netstat is used
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28391
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2022-04-03 21:15 修改: 2022-08-11 18:44
|
| busybox |
CVE-2022-30065 |
高危 |
1.27.2-r7 |
1.35.0-r17 |
busybox: A use-after-free in Busybox's awk applet leads to denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30065
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2022-05-18 15:15 修改: 2023-02-11 17:44
|
| apk-tools |
CVE-2021-30139 |
高危 |
2.9.1-r0 |
2.12.5-r0 |
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-30139
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2021-04-21 16:15 修改: 2021-04-22 18:21
|
| libressl2.6-libcrypto |
CVE-2018-0732 |
高危 |
2.6.3-r0 |
2.7.4-r0 |
openssl: Malicious server can send large prime to client during DH(E) TLS handshake causing the client to hang
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-0732
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2018-06-12 13:29 修改: 2023-11-07 02:51
|
| libressl2.6-libcrypto |
CVE-2022-0778 |
高危 |
2.6.3-r0 |
3.4.3-r0 |
openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
|
| libressl2.6-libssl |
CVE-2018-0732 |
高危 |
2.6.3-r0 |
2.7.4-r0 |
openssl: Malicious server can send large prime to client during DH(E) TLS handshake causing the client to hang
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-0732
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2018-06-12 13:29 修改: 2023-11-07 02:51
|
| libressl2.6-libssl |
CVE-2022-0778 |
高危 |
2.6.3-r0 |
3.4.3-r0 |
openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
|
| busybox |
CVE-2018-1000500 |
高危 |
1.27.2-r7 |
1.28.3-r2 |
busybox: wget: Missing SSL certificate validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000500
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2018-06-26 16:29 修改: 2020-09-24 20:15
|
| busybox |
CVE-2018-20679 |
高危 |
1.27.2-r7 |
1.29.3-r10 |
busybox: Out of bounds read in udhcp components resulting in information disclosure
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20679
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2019-01-09 16:29 修改: 2019-09-04 23:15
|
| busybox |
CVE-2019-5747 |
高危 |
1.27.2-r7 |
1.30.1-r2 |
busybox: Out of bounds read in udhcp components resulting in information disclosure
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5747
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2019-01-09 16:29 修改: 2022-10-29 02:30
|
| zlib |
CVE-2018-25032 |
高危 |
1.2.11-r1 |
1.2.11-r4 |
zlib: A flaw found in zlib when compressing (not decompressing) certain inputs
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-25032
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2022-03-25 09:15 修改: 2023-11-07 02:56
|
| libressl2.6-libcrypto |
CVE-2018-0495 |
中危 |
2.6.3-r0 |
2.7.4-r0 |
ROHNP: Key Extraction Side Channel in Multiple Crypto Libraries
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-0495
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2018-06-13 23:29 修改: 2023-11-07 02:51
|
| libressl2.6-libcrypto |
CVE-2020-1971 |
中危 |
2.6.3-r0 |
3.1.5-r0 |
openssl: EDIPARTYNAME NULL pointer de-reference
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15
|
| busybox |
CVE-2023-42364 |
中危 |
1.27.2-r7 |
1.36.1-r30 |
busybox: use-after-free
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42364
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2023-11-27 23:15 修改: 2024-10-11 21:36
|
| busybox |
CVE-2023-42365 |
中危 |
1.27.2-r7 |
1.36.1-r30 |
busybox: use-after-free
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42365
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
|
| libressl2.6-libssl |
CVE-2018-0495 |
中危 |
2.6.3-r0 |
2.7.4-r0 |
ROHNP: Key Extraction Side Channel in Multiple Crypto Libraries
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-0495
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2018-06-13 23:29 修改: 2023-11-07 02:51
|
| libressl2.6-libssl |
CVE-2020-1971 |
中危 |
2.6.3-r0 |
3.1.5-r0 |
openssl: EDIPARTYNAME NULL pointer de-reference
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15
|
| busybox |
CVE-2023-42366 |
中危 |
1.27.2-r7 |
1.36.1-r25 |
busybox: A heap-buffer-overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42366
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
|
| musl |
CVE-2020-28928 |
中危 |
1.1.18-r5 |
1.2.2_pre2-r0 |
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinati ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28928
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2020-11-24 18:15 修改: 2023-11-07 03:21
|
| busybox |
CVE-2021-42374 |
中危 |
1.27.2-r7 |
1.34.0-r0 |
busybox: out-of-bounds read in unlzma applet leads to information leak and denial of service when crafted LZMA-compressed input is decompressed
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42374
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
|
| musl-utils |
CVE-2020-28928 |
中危 |
1.1.18-r5 |
1.2.2_pre2-r0 |
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinati ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28928
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2020-11-24 18:15 修改: 2023-11-07 03:21
|
| busybox |
CVE-2021-42375 |
中危 |
1.27.2-r7 |
1.34.0-r0 |
busybox: incorrect handling of a special element in ash applet leads to denial of service when processing a crafted shell command
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42375
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2021-11-15 21:15 修改: 2023-11-07 03:39
|
| busybox |
CVE-2023-42363 |
中危 |
1.27.2-r7 |
1.36.1-r27 |
busybox: use-after-free in awk
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42363
镜像层: sha256:c9e8b5c053a2dda62373bc57fa8cb634230a92ba5f02d2baf5d35b932d04a878
发布日期: 2023-11-27 22:15 修改: 2023-11-30 05:06
|