| libcrypto3 |
CVE-2026-31789 |
严重 |
3.3.2-r4 |
3.3.7-r0 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34
|
| libssl3 |
CVE-2026-31789 |
严重 |
3.3.2-r4 |
3.3.7-r0 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34
|
| libxml2 |
CVE-2024-56171 |
严重 |
2.13.4-r3 |
2.13.4-r4 |
libxml2: Use-After-Free in libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56171
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2025-02-18 22:15 修改: 2026-06-17 08:11
|
| sqlite-libs |
CVE-2025-3277 |
严重 |
3.47.1-r0 |
3.48.0-r1 |
SQLite: integer overflow in SQLite
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3277
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-04-14 17:15 修改: 2026-06-17 09:19
|
| sqlite-libs |
CVE-2025-6965 |
严重 |
3.47.1-r0 |
3.48.0-r3 |
sqlite: Integer Truncation in SQLite
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6965
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-07-15 14:15 修改: 2026-06-17 10:02
|
| libcrypto3 |
CVE-2026-28388 |
高危 |
3.3.2-r4 |
3.3.7-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libcrypto3 |
CVE-2026-28389 |
高危 |
3.3.2-r4 |
3.3.7-r0 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libcrypto3 |
CVE-2026-28390 |
高危 |
3.3.2-r4 |
3.3.7-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libexpat |
CVE-2025-59375 |
高危 |
2.6.4-r0 |
2.7.2-r0 |
firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59375
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-09-15 03:15 修改: 2026-06-17 09:46
|
| libexpat |
CVE-2026-25210 |
高危 |
2.6.4-r0 |
2.7.4-r0 |
libexpat: libexpat: Information disclosure and data integrity issues due to integer overflow in buffer reallocation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25210
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-01-30 07:16 修改: 2026-06-17 10:24
|
| libexpat |
CVE-2026-45186 |
高危 |
2.6.4-r0 |
2.8.1-r0 |
libexpat: denial of service via crafted XML input
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45186
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-10 07:16 修改: 2026-06-17 10:51
|
| libpq |
CVE-2025-1094 |
高危 |
17.2-r0 |
17.4-r0 |
postgresql: PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1094
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-02-13 13:15 修改: 2026-06-17 08:38
|
| libpq |
CVE-2025-8714 |
高危 |
17.2-r0 |
17.6-r0 |
postgresql: PostgreSQL code execution in restore operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8714
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-08-14 13:15 修改: 2026-06-17 10:07
|
| libpq |
CVE-2025-8715 |
高危 |
17.2-r0 |
17.6-r0 |
postgresql: PostgreSQL executes arbitrary code in restore operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8715
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-08-14 13:15 修改: 2026-06-17 10:07
|
| libpq |
CVE-2026-2004 |
高危 |
17.2-r0 |
17.8-r0 |
postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2004
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| libpq |
CVE-2026-2005 |
高危 |
17.2-r0 |
17.8-r0 |
postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2005
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| libpq |
CVE-2026-2006 |
高危 |
17.2-r0 |
17.9-r0 |
postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2006
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| libpq |
CVE-2026-2007 |
高危 |
17.2-r0 |
17.9-r0 |
postgresql: PostgreSQL pg_trgm heap buffer overflow writes pattern onto server memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2007
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| libpq |
CVE-2026-6473 |
高危 |
17.2-r0 |
17.10-r0 |
postgresql: integer overflow can cause an undersized allocation and an out-of-bounds write
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6473
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| libpq |
CVE-2026-6477 |
高危 |
17.2-r0 |
17.10-r0 |
postgresql: PostgreSQL libpq: Buffer overflow allows server superuser to overwrite client stack memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6477
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| libpq |
CVE-2026-6478 |
高危 |
17.2-r0 |
17.10-r0 |
postgresql: PostgreSQL: Credential recovery via covert timing channel in MD5 password comparison
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6478
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| libpq |
CVE-2026-6638 |
高危 |
17.2-r0 |
17.10-r0 |
SQL injection in PostgreSQL logical replication ALTER SUBSCRIPTION ... ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6638
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:01
|
| libcrypto3 |
CVE-2024-12797 |
高危 |
3.3.2-r4 |
3.3.3-r0 |
openssl: RFC7250 handshakes with unauthenticated servers don't abort as expected
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12797
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-02-11 16:15 修改: 2026-06-17 07:00
|
| libssl3 |
CVE-2024-12797 |
高危 |
3.3.2-r4 |
3.3.3-r0 |
openssl: RFC7250 handshakes with unauthenticated servers don't abort as expected
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12797
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-02-11 16:15 修改: 2026-06-17 07:00
|
| libssl3 |
CVE-2025-15467 |
高危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 08:37
|
| libssl3 |
CVE-2025-69421 |
高危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl3 |
CVE-2026-28387 |
高危 |
3.3.2-r4 |
3.3.7-r0 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libssl3 |
CVE-2026-28388 |
高危 |
3.3.2-r4 |
3.3.7-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libssl3 |
CVE-2026-28389 |
高危 |
3.3.2-r4 |
3.3.7-r0 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libssl3 |
CVE-2026-28390 |
高危 |
3.3.2-r4 |
3.3.7-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libcrypto3 |
CVE-2025-15467 |
高危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 08:37
|
| libxml2 |
CVE-2025-24928 |
高危 |
2.13.4-r3 |
2.13.4-r4 |
libxml2: Stack-based buffer overflow in xmlSnprintfElements of libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24928
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2025-02-18 23:15 修改: 2026-06-17 08:59
|
| libxml2 |
CVE-2025-27113 |
高危 |
2.13.4-r3 |
2.13.4-r5 |
libxml2: NULL Pointer Dereference in libxml2 xmlPatMatch
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27113
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2025-02-18 23:15 修改: 2026-06-17 09:03
|
| libxml2 |
CVE-2025-32414 |
高危 |
2.13.4-r3 |
2.13.4-r6 |
libxml2: Out-of-Bounds Read in libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32414
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2025-04-08 03:15 修改: 2026-06-17 09:11
|
| libxml2 |
CVE-2025-32415 |
高危 |
2.13.4-r3 |
2.13.4-r6 |
libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32415
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2025-04-17 17:15 修改: 2026-06-17 09:11
|
| libxml2 |
CVE-2025-49794 |
高危 |
2.13.4-r3 |
2.13.9-r0 |
libxml: Heap use after free (UAF) leads to Denial of service (DoS)
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49794
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2025-06-16 16:15 修改: 2026-06-17 09:31
|
| libxml2 |
CVE-2025-49795 |
高危 |
2.13.4-r3 |
2.13.9-r0 |
libxml: Null pointer dereference leads to Denial of service (DoS)
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49795
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2025-06-16 16:15 修改: 2026-06-17 09:31
|
| libxml2 |
CVE-2025-49796 |
高危 |
2.13.4-r3 |
2.13.9-r0 |
libxml: Type confusion leads to Denial of service (DoS)
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49796
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2025-06-16 16:15 修改: 2026-06-17 09:31
|
| libxml2 |
CVE-2026-6732 |
高危 |
2.13.4-r3 |
2.13.9-r1 |
libxml2: libxml2: Denial of Service via crafted XSD-validated document
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6732
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2026-04-23 23:16 修改: 2026-06-17 11:01
|
| libxslt |
CVE-2024-55549 |
高危 |
1.1.42-r1 |
1.1.42-r2 |
libxslt: Use-After-Free in libxslt (xsltGetInheritedNsList)
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-55549
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2025-03-14 02:15 修改: 2026-06-17 08:11
|
| libxslt |
CVE-2025-24855 |
高危 |
1.1.42-r1 |
1.1.42-r2 |
libxslt: Use-After-Free in libxslt numbers.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24855
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2025-03-14 02:15 修改: 2026-06-17 08:59
|
| musl |
CVE-2025-26519 |
高危 |
1.2.5-r8 |
1.2.5-r9 |
musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-26519
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-02-14 04:15 修改: 2026-06-17 09:01
|
| musl |
CVE-2026-40200 |
高危 |
1.2.5-r8 |
1.2.5-r11 |
musl: musl libc: Arbitrary code execution and denial of service via stack-based memory corruption in qsort
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40200
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-10 17:17 修改: 2026-06-17 10:44
|
| musl-utils |
CVE-2025-26519 |
高危 |
1.2.5-r8 |
1.2.5-r9 |
musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-26519
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-02-14 04:15 修改: 2026-06-17 09:01
|
| musl-utils |
CVE-2026-40200 |
高危 |
1.2.5-r8 |
1.2.5-r11 |
musl: musl libc: Arbitrary code execution and denial of service via stack-based memory corruption in qsort
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40200
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-10 17:17 修改: 2026-06-17 10:44
|
| postgresql16 |
CVE-2025-1094 |
高危 |
16.6-r0 |
16.8-r0 |
postgresql: PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1094
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-02-13 13:15 修改: 2026-06-17 08:38
|
| postgresql16 |
CVE-2025-8714 |
高危 |
16.6-r0 |
16.10-r0 |
postgresql: PostgreSQL code execution in restore operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8714
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-08-14 13:15 修改: 2026-06-17 10:07
|
| postgresql16 |
CVE-2025-8715 |
高危 |
16.6-r0 |
16.10-r0 |
postgresql: PostgreSQL executes arbitrary code in restore operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8715
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-08-14 13:15 修改: 2026-06-17 10:07
|
| postgresql16 |
CVE-2026-2004 |
高危 |
16.6-r0 |
16.12-r0 |
postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2004
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| postgresql16 |
CVE-2026-2005 |
高危 |
16.6-r0 |
16.12-r0 |
postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2005
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| postgresql16 |
CVE-2026-2006 |
高危 |
16.6-r0 |
16.13-r0 |
postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2006
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| postgresql16 |
CVE-2026-2007 |
高危 |
16.6-r0 |
16.13-r0 |
postgresql: PostgreSQL pg_trgm heap buffer overflow writes pattern onto server memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2007
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| postgresql16 |
CVE-2026-6473 |
高危 |
16.6-r0 |
16.14-r0 |
postgresql: integer overflow can cause an undersized allocation and an out-of-bounds write
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6473
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16 |
CVE-2026-6477 |
高危 |
16.6-r0 |
16.14-r0 |
postgresql: PostgreSQL libpq: Buffer overflow allows server superuser to overwrite client stack memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6477
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16 |
CVE-2026-6478 |
高危 |
16.6-r0 |
16.14-r0 |
postgresql: PostgreSQL: Credential recovery via covert timing channel in MD5 password comparison
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6478
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16 |
CVE-2026-6638 |
高危 |
16.6-r0 |
16.14-r0 |
SQL injection in PostgreSQL logical replication ALTER SUBSCRIPTION ... ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6638
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:01
|
| postgresql16-client |
CVE-2025-1094 |
高危 |
16.6-r0 |
16.8-r0 |
postgresql: PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1094
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-02-13 13:15 修改: 2026-06-17 08:38
|
| postgresql16-client |
CVE-2025-8714 |
高危 |
16.6-r0 |
16.10-r0 |
postgresql: PostgreSQL code execution in restore operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8714
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-08-14 13:15 修改: 2026-06-17 10:07
|
| postgresql16-client |
CVE-2025-8715 |
高危 |
16.6-r0 |
16.10-r0 |
postgresql: PostgreSQL executes arbitrary code in restore operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8715
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-08-14 13:15 修改: 2026-06-17 10:07
|
| postgresql16-client |
CVE-2026-2004 |
高危 |
16.6-r0 |
16.12-r0 |
postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2004
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| postgresql16-client |
CVE-2026-2005 |
高危 |
16.6-r0 |
16.12-r0 |
postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2005
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| postgresql16-client |
CVE-2026-2006 |
高危 |
16.6-r0 |
16.13-r0 |
postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2006
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| postgresql16-client |
CVE-2026-2007 |
高危 |
16.6-r0 |
16.13-r0 |
postgresql: PostgreSQL pg_trgm heap buffer overflow writes pattern onto server memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2007
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| postgresql16-client |
CVE-2026-6473 |
高危 |
16.6-r0 |
16.14-r0 |
postgresql: integer overflow can cause an undersized allocation and an out-of-bounds write
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6473
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16-client |
CVE-2026-6477 |
高危 |
16.6-r0 |
16.14-r0 |
postgresql: PostgreSQL libpq: Buffer overflow allows server superuser to overwrite client stack memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6477
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16-client |
CVE-2026-6478 |
高危 |
16.6-r0 |
16.14-r0 |
postgresql: PostgreSQL: Credential recovery via covert timing channel in MD5 password comparison
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6478
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16-client |
CVE-2026-6638 |
高危 |
16.6-r0 |
16.14-r0 |
SQL injection in PostgreSQL logical replication ALTER SUBSCRIPTION ... ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6638
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:01
|
| postgresql16-plpython3 |
CVE-2025-1094 |
高危 |
16.6-r0 |
16.8-r0 |
postgresql: PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1094
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-02-13 13:15 修改: 2026-06-17 08:38
|
| postgresql16-plpython3 |
CVE-2025-8714 |
高危 |
16.6-r0 |
16.10-r0 |
postgresql: PostgreSQL code execution in restore operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8714
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-08-14 13:15 修改: 2026-06-17 10:07
|
| postgresql16-plpython3 |
CVE-2025-8715 |
高危 |
16.6-r0 |
16.10-r0 |
postgresql: PostgreSQL executes arbitrary code in restore operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8715
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-08-14 13:15 修改: 2026-06-17 10:07
|
| postgresql16-plpython3 |
CVE-2026-2004 |
高危 |
16.6-r0 |
16.12-r0 |
postgresql: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2004
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| postgresql16-plpython3 |
CVE-2026-2005 |
高危 |
16.6-r0 |
16.12-r0 |
postgresql: PostgreSQL pgcrypto heap buffer overflow executes arbitrary code
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2005
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| postgresql16-plpython3 |
CVE-2026-2006 |
高危 |
16.6-r0 |
16.13-r0 |
postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2006
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| postgresql16-plpython3 |
CVE-2026-2007 |
高危 |
16.6-r0 |
16.13-r0 |
postgresql: PostgreSQL pg_trgm heap buffer overflow writes pattern onto server memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2007
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| postgresql16-plpython3 |
CVE-2026-6473 |
高危 |
16.6-r0 |
16.14-r0 |
postgresql: integer overflow can cause an undersized allocation and an out-of-bounds write
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6473
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16-plpython3 |
CVE-2026-6477 |
高危 |
16.6-r0 |
16.14-r0 |
postgresql: PostgreSQL libpq: Buffer overflow allows server superuser to overwrite client stack memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6477
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16-plpython3 |
CVE-2026-6478 |
高危 |
16.6-r0 |
16.14-r0 |
postgresql: PostgreSQL: Credential recovery via covert timing channel in MD5 password comparison
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6478
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16-plpython3 |
CVE-2026-6638 |
高危 |
16.6-r0 |
16.14-r0 |
SQL injection in PostgreSQL logical replication ALTER SUBSCRIPTION ... ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6638
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:01
|
| pyc |
CVE-2024-12718 |
高危 |
3.12.8-r1 |
3.12.11-r0 |
cpython: python: Bypass extraction filter to modify file metadata outside extraction directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12718
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 07:00
|
| pyc |
CVE-2025-4138 |
高危 |
3.12.8-r1 |
3.12.11-r0 |
cpython: python: Bypassing extraction filter to create symlinks to arbitrary targets outside extraction directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4138
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 09:32
|
| pyc |
CVE-2025-4517 |
高危 |
3.12.8-r1 |
3.12.11-r0 |
python: cpython: Arbitrary writes via tarfile realpath overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4517
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 09:33
|
| python3 |
CVE-2024-12718 |
高危 |
3.12.8-r1 |
3.12.11-r0 |
cpython: python: Bypass extraction filter to modify file metadata outside extraction directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12718
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 07:00
|
| python3 |
CVE-2025-4138 |
高危 |
3.12.8-r1 |
3.12.11-r0 |
cpython: python: Bypassing extraction filter to create symlinks to arbitrary targets outside extraction directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4138
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 09:32
|
| python3 |
CVE-2025-4517 |
高危 |
3.12.8-r1 |
3.12.11-r0 |
python: cpython: Arbitrary writes via tarfile realpath overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4517
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 09:33
|
| python3-pyc |
CVE-2024-12718 |
高危 |
3.12.8-r1 |
3.12.11-r0 |
cpython: python: Bypass extraction filter to modify file metadata outside extraction directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12718
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 07:00
|
| python3-pyc |
CVE-2025-4138 |
高危 |
3.12.8-r1 |
3.12.11-r0 |
cpython: python: Bypassing extraction filter to create symlinks to arbitrary targets outside extraction directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4138
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 09:32
|
| python3-pyc |
CVE-2025-4517 |
高危 |
3.12.8-r1 |
3.12.11-r0 |
python: cpython: Arbitrary writes via tarfile realpath overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4517
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 09:33
|
| python3-pycache-pyc0 |
CVE-2024-12718 |
高危 |
3.12.8-r1 |
3.12.11-r0 |
cpython: python: Bypass extraction filter to modify file metadata outside extraction directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12718
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 07:00
|
| python3-pycache-pyc0 |
CVE-2025-4138 |
高危 |
3.12.8-r1 |
3.12.11-r0 |
cpython: python: Bypassing extraction filter to create symlinks to arbitrary targets outside extraction directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4138
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 09:32
|
| python3-pycache-pyc0 |
CVE-2025-4517 |
高危 |
3.12.8-r1 |
3.12.11-r0 |
python: cpython: Arbitrary writes via tarfile realpath overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4517
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 09:33
|
| libcrypto3 |
CVE-2025-69421 |
高危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libcrypto3 |
CVE-2026-28387 |
高危 |
3.3.2-r4 |
3.3.7-r0 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| sqlite-libs |
CVE-2025-29087 |
高危 |
3.47.1-r0 |
3.48.0-r1 |
sqlite: Integer Overflow in SQLite concat_ws Function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29087
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-04-07 20:15 修改: 2026-06-17 09:05
|
| xz-libs |
CVE-2025-31115 |
高危 |
5.6.3-r0 |
5.6.3-r1 |
xz: XZ has a heap-use-after-free bug in threaded .xz decoder
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-31115
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2025-04-03 17:15 修改: 2026-06-17 09:09
|
| zlib |
CVE-2026-22184 |
高危 |
1.3.1-r2 |
1.3.2-r0 |
zlib: zlib: Arbitrary code execution via buffer overflow in untgz utility
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22184
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-07 21:16 修改: 2026-06-17 10:19
|
| libpq |
CVE-2025-12818 |
中危 |
17.2-r0 |
17.7-r0 |
postgresql: libpq: libpq undersizes allocations, via integer wraparound
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12818
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-11-13 13:15 修改: 2026-06-17 08:33
|
| libpq |
CVE-2025-4207 |
中危 |
17.2-r0 |
17.5-r0 |
postgresql: PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4207
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-05-08 15:15 修改: 2026-06-17 09:32
|
| libpq |
CVE-2026-2003 |
中危 |
17.2-r0 |
17.8-r0 |
postgresql: PostgreSQL oidvector discloses a few bytes of memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2003
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| libpq |
CVE-2026-6472 |
中危 |
17.2-r0 |
17.10-r0 |
postgresql: PostgreSQL CREATE TYPE does not check multirange schema CREATE privilege
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6472
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| libpq |
CVE-2026-6474 |
中危 |
17.2-r0 |
17.10-r0 |
postgresql: PostgreSQL: Information disclosure via externally-controlled format string in timeofday() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6474
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| libxml2 |
CVE-2025-6021 |
中危 |
2.13.4-r3 |
2.13.9-r0 |
libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6021
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2025-06-12 13:15 修改: 2026-06-17 10:01
|
| libpq |
CVE-2026-6475 |
中危 |
17.2-r0 |
17.10-r0 |
postgresql: PostgreSQL: Operating system account hijack via symlink following in pg_basebackup and pg_rewind
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6475
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| libpq |
CVE-2026-6476 |
中危 |
17.2-r0 |
17.10-r0 |
SQL injection in PostgreSQL pg_createsubscriber allows an attacker wit ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6476
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16-client |
CVE-2025-12818 |
中危 |
16.6-r0 |
16.11-r0 |
postgresql: libpq: libpq undersizes allocations, via integer wraparound
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12818
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-11-13 13:15 修改: 2026-06-17 08:33
|
| postgresql16-client |
CVE-2025-4207 |
中危 |
16.6-r0 |
16.9-r0 |
postgresql: PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4207
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-05-08 15:15 修改: 2026-06-17 09:32
|
| postgresql16-client |
CVE-2026-2003 |
中危 |
16.6-r0 |
16.12-r0 |
postgresql: PostgreSQL oidvector discloses a few bytes of memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2003
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| postgresql16-client |
CVE-2026-6472 |
中危 |
16.6-r0 |
16.14-r0 |
postgresql: PostgreSQL CREATE TYPE does not check multirange schema CREATE privilege
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6472
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16-client |
CVE-2026-6474 |
中危 |
16.6-r0 |
16.14-r0 |
postgresql: PostgreSQL: Information disclosure via externally-controlled format string in timeofday() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6474
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16-client |
CVE-2026-6475 |
中危 |
16.6-r0 |
16.14-r0 |
postgresql: PostgreSQL: Operating system account hijack via symlink following in pg_basebackup and pg_rewind
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6475
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16-client |
CVE-2026-6479 |
中危 |
16.6-r0 |
16.14-r0 |
Uncontrolled recursion in PostgreSQL SSL and GSS negotiation allows an ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6479
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16-client |
CVE-2026-6637 |
中危 |
16.6-r0 |
16.14-r0 |
Stack buffer overflow in PostgreSQL module "refint" allows an unprivil ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6637
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:01
|
| libpq |
CVE-2026-6479 |
中危 |
17.2-r0 |
17.10-r0 |
Uncontrolled recursion in PostgreSQL SSL and GSS negotiation allows an ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6479
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| libpq |
CVE-2026-6637 |
中危 |
17.2-r0 |
17.10-r0 |
Stack buffer overflow in PostgreSQL module "refint" allows an unprivil ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6637
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:01
|
| musl |
CVE-2026-6042 |
中危 |
1.2.5-r8 |
1.2.5-r10 |
musl libc: GB18030 4-byte Decoder: musl libc: Denial of Service via inefficient algorithmic complexity in iconv
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6042
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-10 09:16 修改: 2026-06-17 11:00
|
| libexpat |
CVE-2026-32778 |
中危 |
2.6.4-r0 |
2.7.5-r0 |
libexpat: libexpat: Denial of Service via NULL pointer dereference after out-of-memory condition
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32778
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36
|
| icu-libs |
CVE-2025-5222 |
中危 |
74.2-r0 |
74.2-r1 |
icu: Stack buffer overflow in the SRBRoot::addTag function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5222
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2025-05-27 21:15 修改: 2026-06-17 09:47
|
| musl-utils |
CVE-2026-6042 |
中危 |
1.2.5-r8 |
1.2.5-r10 |
musl libc: GB18030 4-byte Decoder: musl libc: Denial of Service via inefficient algorithmic complexity in iconv
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6042
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-10 09:16 修改: 2026-06-17 11:00
|
| libcrypto3 |
CVE-2025-69419 |
中危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libcrypto3 |
CVE-2025-9230 |
中危 |
3.3.2-r4 |
3.3.5-r0 |
openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08
|
| libcrypto3 |
CVE-2025-9231 |
中危 |
3.3.2-r4 |
3.3.5-r0 |
openssl: Timing side-channel in SM2 algorithm on 64 bit ARM
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9231
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08
|
| libcrypto3 |
CVE-2026-31790 |
中危 |
3.3.2-r4 |
3.3.7-r0 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34
|
| busybox |
CVE-2024-58251 |
中危 |
1.37.0-r9 |
1.37.0-r14 |
In netstat in BusyBox through 1.37.0, local users can launch of networ ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-58251
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-04-23 18:16 修改: 2026-06-17 08:14
|
| postgresql16-plpython3 |
CVE-2025-12818 |
中危 |
16.6-r0 |
16.11-r0 |
postgresql: libpq: libpq undersizes allocations, via integer wraparound
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12818
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-11-13 13:15 修改: 2026-06-17 08:33
|
| postgresql16-plpython3 |
CVE-2025-4207 |
中危 |
16.6-r0 |
16.9-r0 |
postgresql: PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4207
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-05-08 15:15 修改: 2026-06-17 09:32
|
| postgresql16-plpython3 |
CVE-2026-2003 |
中危 |
16.6-r0 |
16.12-r0 |
postgresql: PostgreSQL oidvector discloses a few bytes of memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2003
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| postgresql16-plpython3 |
CVE-2026-6472 |
中危 |
16.6-r0 |
16.14-r0 |
postgresql: PostgreSQL CREATE TYPE does not check multirange schema CREATE privilege
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6472
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16-plpython3 |
CVE-2026-6474 |
中危 |
16.6-r0 |
16.14-r0 |
postgresql: PostgreSQL: Information disclosure via externally-controlled format string in timeofday() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6474
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16-plpython3 |
CVE-2026-6475 |
中危 |
16.6-r0 |
16.14-r0 |
postgresql: PostgreSQL: Operating system account hijack via symlink following in pg_basebackup and pg_rewind
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6475
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16-plpython3 |
CVE-2026-6479 |
中危 |
16.6-r0 |
16.14-r0 |
Uncontrolled recursion in PostgreSQL SSL and GSS negotiation allows an ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6479
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16-plpython3 |
CVE-2026-6637 |
中危 |
16.6-r0 |
16.14-r0 |
Stack buffer overflow in PostgreSQL module "refint" allows an unprivil ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6637
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:01
|
| busybox-binsh |
CVE-2024-58251 |
中危 |
1.37.0-r9 |
1.37.0-r14 |
In netstat in BusyBox through 1.37.0, local users can launch of networ ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-58251
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-04-23 18:16 修改: 2026-06-17 08:14
|
| libssl3 |
CVE-2025-69419 |
中危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl3 |
CVE-2025-9230 |
中危 |
3.3.2-r4 |
3.3.5-r0 |
openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08
|
| pyc |
CVE-2025-0938 |
中危 |
3.12.8-r1 |
3.12.9-r0 |
python: cpython: URL parser allowed square brackets in domain names
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0938
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-01-31 18:15 修改: 2026-06-17 08:27
|
| pyc |
CVE-2025-4330 |
中危 |
3.12.8-r1 |
3.12.11-r0 |
cpython: python: Extraction filter bypass for linking outside extraction directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4330
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 09:33
|
| pyc |
CVE-2025-4516 |
中危 |
3.12.8-r1 |
3.12.10-r1 |
cpython: python: CPython DecodeError Handling Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4516
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-05-15 14:15 修改: 2026-06-17 09:33
|
| libssl3 |
CVE-2025-9231 |
中危 |
3.3.2-r4 |
3.3.5-r0 |
openssl: Timing side-channel in SM2 algorithm on 64 bit ARM
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9231
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08
|
| libssl3 |
CVE-2026-31790 |
中危 |
3.3.2-r4 |
3.3.7-r0 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34
|
| icu-data-full |
CVE-2025-5222 |
中危 |
74.2-r0 |
74.2-r1 |
icu: Stack buffer overflow in the SRBRoot::addTag function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5222
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2025-05-27 21:15 修改: 2026-06-17 09:47
|
| python3 |
CVE-2025-0938 |
中危 |
3.12.8-r1 |
3.12.9-r0 |
python: cpython: URL parser allowed square brackets in domain names
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0938
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-01-31 18:15 修改: 2026-06-17 08:27
|
| python3 |
CVE-2025-4330 |
中危 |
3.12.8-r1 |
3.12.11-r0 |
cpython: python: Extraction filter bypass for linking outside extraction directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4330
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 09:33
|
| python3 |
CVE-2025-4516 |
中危 |
3.12.8-r1 |
3.12.10-r1 |
cpython: python: CPython DecodeError Handling Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4516
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-05-15 14:15 修改: 2026-06-17 09:33
|
| postgresql16 |
CVE-2025-12818 |
中危 |
16.6-r0 |
16.11-r0 |
postgresql: libpq: libpq undersizes allocations, via integer wraparound
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12818
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-11-13 13:15 修改: 2026-06-17 08:33
|
| postgresql16 |
CVE-2025-4207 |
中危 |
16.6-r0 |
16.9-r0 |
postgresql: PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4207
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-05-08 15:15 修改: 2026-06-17 09:32
|
| postgresql16 |
CVE-2026-2003 |
中危 |
16.6-r0 |
16.12-r0 |
postgresql: PostgreSQL oidvector discloses a few bytes of memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2003
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-02-12 14:16 修改: 2026-06-17 10:29
|
| python3-pyc |
CVE-2025-0938 |
中危 |
3.12.8-r1 |
3.12.9-r0 |
python: cpython: URL parser allowed square brackets in domain names
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0938
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-01-31 18:15 修改: 2026-06-17 08:27
|
| python3-pyc |
CVE-2025-4330 |
中危 |
3.12.8-r1 |
3.12.11-r0 |
cpython: python: Extraction filter bypass for linking outside extraction directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4330
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 09:33
|
| python3-pyc |
CVE-2025-4516 |
中危 |
3.12.8-r1 |
3.12.10-r1 |
cpython: python: CPython DecodeError Handling Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4516
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-05-15 14:15 修改: 2026-06-17 09:33
|
| postgresql16 |
CVE-2026-6472 |
中危 |
16.6-r0 |
16.14-r0 |
postgresql: PostgreSQL CREATE TYPE does not check multirange schema CREATE privilege
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6472
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16 |
CVE-2026-6474 |
中危 |
16.6-r0 |
16.14-r0 |
postgresql: PostgreSQL: Information disclosure via externally-controlled format string in timeofday() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6474
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16 |
CVE-2026-6475 |
中危 |
16.6-r0 |
16.14-r0 |
postgresql: PostgreSQL: Operating system account hijack via symlink following in pg_basebackup and pg_rewind
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6475
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| python3-pycache-pyc0 |
CVE-2025-0938 |
中危 |
3.12.8-r1 |
3.12.9-r0 |
python: cpython: URL parser allowed square brackets in domain names
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0938
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-01-31 18:15 修改: 2026-06-17 08:27
|
| python3-pycache-pyc0 |
CVE-2025-4330 |
中危 |
3.12.8-r1 |
3.12.11-r0 |
cpython: python: Extraction filter bypass for linking outside extraction directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4330
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-06-03 13:15 修改: 2026-06-17 09:33
|
| python3-pycache-pyc0 |
CVE-2025-4516 |
中危 |
3.12.8-r1 |
3.12.10-r1 |
cpython: python: CPython DecodeError Handling Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4516
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-05-15 14:15 修改: 2026-06-17 09:33
|
| postgresql16 |
CVE-2026-6479 |
中危 |
16.6-r0 |
16.14-r0 |
Uncontrolled recursion in PostgreSQL SSL and GSS negotiation allows an ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6479
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:00
|
| postgresql16 |
CVE-2026-6637 |
中危 |
16.6-r0 |
16.14-r0 |
Stack buffer overflow in PostgreSQL module "refint" allows an unprivil ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6637
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-05-14 14:16 修改: 2026-06-17 11:01
|
| libexpat |
CVE-2024-8176 |
中危 |
2.6.4-r0 |
2.7.0-r0 |
libexpat: expat: Improper Restriction of XML Entity Expansion Depth in libexpat
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8176
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-03-14 09:15 修改: 2026-06-17 08:22
|
| sqlite-libs |
CVE-2025-29088 |
中危 |
3.47.1-r0 |
3.48.0-r4 |
sqlite: Denial of Service in SQLite
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29088
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-04-10 14:15 修改: 2026-06-17 09:05
|
| ssl_client |
CVE-2024-58251 |
中危 |
1.37.0-r9 |
1.37.0-r14 |
In netstat in BusyBox through 1.37.0, local users can launch of networ ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-58251
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-04-23 18:16 修改: 2026-06-17 08:14
|
| libexpat |
CVE-2026-32776 |
中危 |
2.6.4-r0 |
2.7.5-r0 |
libexpat: libexpat: Denial of Service due to NULL pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32776
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36
|
| xz-libs |
CVE-2026-34743 |
中危 |
5.6.3-r0 |
5.8.3-r0 |
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2026-04-02 19:21 修改: 2026-06-17 10:39
|
| libexpat |
CVE-2026-32777 |
中危 |
2.6.4-r0 |
2.7.5-r0 |
libexpat: libexpat: Denial of Service via infinite loop in DTD content parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32777
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36
|
| zlib |
CVE-2026-27171 |
中危 |
1.3.1-r2 |
1.3.2-r0 |
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-02-18 04:16 修改: 2026-06-17 10:26
|
| libpq |
CVE-2025-12817 |
低危 |
17.2-r0 |
17.7-r0 |
postgresql: CREATE STATISTICS does not check for schema CREATE privilege
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12817
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-11-13 13:15 修改: 2026-06-17 08:32
|
| libpq |
CVE-2025-8713 |
低危 |
17.2-r0 |
17.6-r0 |
postgresql: PostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8713
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-08-14 13:15 修改: 2026-06-17 10:07
|
| libcrypto3 |
CVE-2025-15468 |
低危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15468
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 08:37
|
| libcrypto3 |
CVE-2025-66199 |
低危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service due to excessive memory allocation in TLS 1.3 certificate compression
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66199
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:56
|
| libcrypto3 |
CVE-2025-68160 |
低危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:58
|
| libcrypto3 |
CVE-2025-69418 |
低危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| postgresql16-client |
CVE-2025-12817 |
低危 |
16.6-r0 |
16.11-r0 |
postgresql: CREATE STATISTICS does not check for schema CREATE privilege
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12817
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-11-13 13:15 修改: 2026-06-17 08:32
|
| postgresql16-client |
CVE-2025-8713 |
低危 |
16.6-r0 |
16.10-r0 |
postgresql: PostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8713
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-08-14 13:15 修改: 2026-06-17 10:07
|
| libexpat |
CVE-2026-24515 |
低危 |
2.6.4-r0 |
2.7.4-r0 |
libexpat: libexpat null pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24515
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-01-23 08:16 修改: 2026-06-17 10:23
|
| libexpat |
CVE-2026-41080 |
低危 |
2.6.4-r0 |
2.8.1-r0 |
libexpat: expat: libexpat: Denial of Service via hash flooding with crafted XML
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41080
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2026-04-16 17:16 修改: 2026-06-17 10:46
|
| libcrypto3 |
CVE-2025-69420 |
低危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via malformed TimeStamp Response
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libxml2 |
CVE-2025-6170 |
低危 |
2.13.4-r3 |
2.13.9-r0 |
libxml2: Stack Buffer Overflow in xmllint Interactive Shell Command Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6170
镜像层: sha256:4e3bce3df52b74b7ae41329d1dd3942b26e78c4c87537ca4a436f85a795d1ce9
发布日期: 2025-06-16 16:15 修改: 2026-06-17 10:01
|
| libcrypto3 |
CVE-2025-9232 |
低危 |
3.3.2-r4 |
3.3.5-r0 |
openssl: Out-of-bounds read in HTTP client no_proxy handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9232
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08
|
| libcrypto3 |
CVE-2026-22795 |
低危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20
|
| postgresql16 |
CVE-2025-12817 |
低危 |
16.6-r0 |
16.11-r0 |
postgresql: CREATE STATISTICS does not check for schema CREATE privilege
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12817
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-11-13 13:15 修改: 2026-06-17 08:32
|
| postgresql16 |
CVE-2025-8713 |
低危 |
16.6-r0 |
16.10-r0 |
postgresql: PostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8713
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-08-14 13:15 修改: 2026-06-17 10:07
|
| libcrypto3 |
CVE-2026-22796 |
低危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20
|
| busybox |
CVE-2025-46394 |
低危 |
1.37.0-r9 |
1.37.0-r14 |
In tar in BusyBox through 1.37.0, a TAR archive can have filenames hid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-46394
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-04-23 16:15 修改: 2026-06-17 09:26
|
| busybox-binsh |
CVE-2025-46394 |
低危 |
1.37.0-r9 |
1.37.0-r14 |
In tar in BusyBox through 1.37.0, a TAR archive can have filenames hid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-46394
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-04-23 16:15 修改: 2026-06-17 09:26
|
| libssl3 |
CVE-2024-13176 |
低危 |
3.3.2-r4 |
3.3.2-r5 |
openssl: Timing side-channel in ECDSA signature computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13176
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-01-20 14:15 修改: 2026-06-17 07:01
|
| libssl3 |
CVE-2025-15468 |
低危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15468
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 08:37
|
| libssl3 |
CVE-2025-66199 |
低危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service due to excessive memory allocation in TLS 1.3 certificate compression
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66199
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:56
|
| libssl3 |
CVE-2025-68160 |
低危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:58
|
| libssl3 |
CVE-2025-69418 |
低危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl3 |
CVE-2025-69420 |
低危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via malformed TimeStamp Response
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl3 |
CVE-2025-9232 |
低危 |
3.3.2-r4 |
3.3.5-r0 |
openssl: Out-of-bounds read in HTTP client no_proxy handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9232
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08
|
| libssl3 |
CVE-2026-22795 |
低危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20
|
| ssl_client |
CVE-2025-46394 |
低危 |
1.37.0-r9 |
1.37.0-r14 |
In tar in BusyBox through 1.37.0, a TAR archive can have filenames hid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-46394
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-04-23 16:15 修改: 2026-06-17 09:26
|
| postgresql16-plpython3 |
CVE-2025-12817 |
低危 |
16.6-r0 |
16.11-r0 |
postgresql: CREATE STATISTICS does not check for schema CREATE privilege
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12817
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-11-13 13:15 修改: 2026-06-17 08:32
|
| postgresql16-plpython3 |
CVE-2025-8713 |
低危 |
16.6-r0 |
16.10-r0 |
postgresql: PostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8713
镜像层: sha256:363c367b98b622ee2ea3220713bd1203243a2ebf3c0eefb3b7827f032ac6f76d
发布日期: 2025-08-14 13:15 修改: 2026-06-17 10:07
|
| libssl3 |
CVE-2026-22796 |
低危 |
3.3.2-r4 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20
|
| libcrypto3 |
CVE-2024-13176 |
低危 |
3.3.2-r4 |
3.3.2-r5 |
openssl: Timing side-channel in ECDSA signature computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13176
镜像层: sha256:a0904247e36a7726c03c71ee48f3e64462021c88dafeb13f37fdaf613b27f11c
发布日期: 2025-01-20 14:15 修改: 2026-06-17 07:01
|