docker.io/tobyxdd/hysteria:v2 linux/amd64

docker.io/tobyxdd/hysteria:v2 - Trivy安全扫描结果 扫描时间: 2026-07-04 21:37
全部漏洞信息
低危漏洞:3 中危漏洞:6 高危漏洞:10 严重漏洞:0

系统OS: alpine 3.24.1 扫描引擎: Trivy 扫描时间: 2026-07-04 21:37

docker.io/tobyxdd/hysteria:v2 (alpine 3.24.1) (alpine)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
usr/local/bin/hysteria (gobinary)
低危漏洞:3 中危漏洞:6 高危漏洞:10 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
golang.org/x/crypto CVE-2026-39827 高危 v0.51.0 0.52.0 An authenticated SSH client that repeatedly opened channels which were ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39827

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-05-22 04:16 修改: 2026-06-17 10:42

golang.org/x/crypto CVE-2026-39828 高危 v0.51.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39828

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-05-22 04:16 修改: 2026-07-02 12:17

golang.org/x/crypto CVE-2026-39829 高危 v0.51.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39829

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-05-22 04:16 修改: 2026-07-01 13:17

golang.org/x/crypto CVE-2026-39830 高危 v0.51.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39830

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-05-22 04:16 修改: 2026-07-03 13:17

golang.org/x/crypto CVE-2026-39832 高危 v0.51.0 0.52.0 golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to improper handling of key restrictions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39832

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-05-22 04:16 修改: 2026-07-03 13:17

golang.org/x/crypto CVE-2026-39835 高危 v0.51.0 0.52.0 golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39835

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-05-22 04:16 修改: 2026-07-03 13:17

golang.org/x/crypto CVE-2026-42508 高危 v0.51.0 0.52.0 golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42508

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-05-22 04:16 修改: 2026-07-03 13:17

golang.org/x/crypto CVE-2026-46595 高危 v0.51.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46595

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-05-22 04:16 修改: 2026-07-01 13:17

golang.org/x/crypto CVE-2026-46597 高危 v0.51.0 0.52.0 An incorrectly placed cast from bytes to int allowed for server-side p ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46597

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-05-22 04:16 修改: 2026-06-17 10:53

golang.org/x/oauth2 CVE-2025-22868 高危 v0.20.0 0.27.0 golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22868

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2025-02-26 08:14 修改: 2026-06-17 08:50

github.com/hashicorp/go-retryablehttp CVE-2024-6104 中危 v0.7.6 0.7.7 go-retryablehttp: url might write sensitive information to log file

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6104

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2024-06-24 17:15 修改: 2026-06-17 08:17

golang.org/x/crypto CVE-2026-39831 中危 v0.51.0 0.52.0 The Verify() method for FIDO/U2F security key types (sk-ecdsa-sha2-nis ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39831

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-05-22 04:16 修改: 2026-06-17 10:42

golang.org/x/crypto CVE-2026-39833 中危 v0.51.0 0.52.0 golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: Security bypass due to unenforced key confirmation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39833

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-05-22 04:16 修改: 2026-06-17 10:42

golang.org/x/crypto CVE-2026-39834 中危 v0.51.0 0.52.0 When writing data larger than 4GB in a single Write call on an SSH cha ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39834

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-05-22 04:16 修改: 2026-06-17 10:42

golang.org/x/crypto CVE-2026-46598 中危 v0.51.0 0.52.0 golang.org/x/crypto/ssh/agent: golang: golang.org/x/crypto/ssh/agent: Denial of Service via malformed input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46598

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-05-22 04:16 修改: 2026-06-17 10:53

github.com/refraction-networking/utls CVE-2026-26994 中危 v1.6.6 1.7.0 uTLS is a fork of crypto/tls, created to customize ClientHello for fin ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26994

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

github.com/refraction-networking/utls CVE-2026-27017 低危 v1.6.6 1.8.1 uTLS has a fingerprint vulnerability from GREASE ECH mismatch for Chrome parrots

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27017

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

github.com/cloudflare/circl CVE-2025-8556 低危 v1.3.9 1.6.1 github.com/cloudflare/circl: CIRCL-Fourq: Missing and wrong validation can lead to incorrect results

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8556

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2025-08-06 09:15 修改: 2026-06-17 10:07

github.com/cloudflare/circl CVE-2026-1229 低危 v1.3.9 1.6.3 CIRCL has an incorrect calculation in secp384r1 CombinedMult

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1229

镜像层: sha256:40192865a7d0eb0afc8f4908c677579131bd8b7b0785fdc7b47f3580e9a72b6a

发布日期: 2026-02-24 08:16 修改: 2026-06-17 10:15

检测到您正在使用广告拦截插件,本站为公益站点,依赖广告维持运转 🙏 查看如何关闭 ×