docker.io/velero/velero-plugin-for-aws:v1.2.1 linux/amd64

docker.io/velero/velero-plugin-for-aws:v1.2.1 - Trivy安全扫描结果扫描时间: 2024-12-27 14:27

全部漏洞信息

低危漏洞:60

中危漏洞:65

高危漏洞:53

严重漏洞:4

系统OS: ubuntu 18.04 扫描引擎: Trivy 扫描时间: 2024-12-27 14:27

docker.io/velero/velero-plugin-for-aws:v1.2.1 (ubuntu 18.04) (ubuntu)

低危漏洞:58

中危漏洞:26

高危漏洞:2

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
libsystemd0	CVE-2021-33910	高危	237-3ubuntu10.48	237-3ubuntu10.49	systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33910 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-07-20 19:15 修改: 2023-11-07 03:35
libudev1	CVE-2021-33910	高危	237-3ubuntu10.48	237-3ubuntu10.49	systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33910 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-07-20 19:15 修改: 2023-11-07 03:35
gpgv	CVE-2022-34903	中危	2.2.4-1ubuntu1.4	2.2.4-1ubuntu1.6	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
gzip	CVE-2022-1271	中危	1.6-5ubuntu1	1.6-5ubuntu1.2	gzip: arbitrary-file-write vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47
libc-bin	CVE-2021-3999	中危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: Off-by-one buffer overflow/underflow in getcwd() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3999 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-08-24 16:15 修改: 2023-02-12 23:43
libc6	CVE-2021-3999	中危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: Off-by-one buffer overflow/underflow in getcwd() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3999 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-08-24 16:15 修改: 2023-02-12 23:43
libcom-err2	CVE-2022-1304	中危	1.44.1-1ubuntu1.3	1.44.1-1ubuntu1.4	e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
libext2fs2	CVE-2022-1304	中危	1.44.1-1ubuntu1.3	1.44.1-1ubuntu1.4	e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
libgcrypt20	CVE-2021-40528	中危	1.8.1-4ubuntu1.2	1.8.1-4ubuntu1.3	libgcrypt: ElGamal implementation allows plaintext recovery 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-40528 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-09-06 19:15 修改: 2023-11-07 03:38
libgnutls30	CVE-2022-2509	中危	3.5.18-1ubuntu1.4	3.5.18-1ubuntu1.6	gnutls: Double free during gnutls_pkcs7_verify 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2509 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-08-01 14:15 修改: 2023-11-07 03:46
liblzma5	CVE-2022-1271	中危	5.2.2-1.3	5.2.2-1.3ubuntu0.1	gzip: arbitrary-file-write vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47
libncurses5	CVE-2023-29491	中危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
libncursesw5	CVE-2023-29491	中危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
libss2	CVE-2022-1304	中危	1.44.1-1ubuntu1.3	1.44.1-1ubuntu1.4	e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
dpkg	CVE-2022-1664	中危	1.19.0.5ubuntu2.3	1.19.0.5ubuntu2.4	Dpkg::Source::Archive in dpkg, the Debian package management system, b ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1664 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-05-26 14:15 修改: 2022-12-03 02:19
libsystemd0	CVE-2022-2526	中危	237-3ubuntu10.48	237-3ubuntu10.56	systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2526 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-09-09 15:15 修改: 2023-01-20 03:17
libsystemd0	CVE-2022-3821	中危	237-3ubuntu10.48	237-3ubuntu10.57	systemd: buffer overrun in format_timespan() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3821 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-11-08 22:15 修改: 2023-11-07 03:51
libtinfo5	CVE-2023-29491	中危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
e2fsprogs	CVE-2022-1304	中危	1.44.1-1ubuntu1.3	1.44.1-1ubuntu1.4	e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
libudev1	CVE-2022-2526	中危	237-3ubuntu10.48	237-3ubuntu10.56	systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2526 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-09-09 15:15 修改: 2023-01-20 03:17
libudev1	CVE-2022-3821	中危	237-3ubuntu10.48	237-3ubuntu10.57	systemd: buffer overrun in format_timespan() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3821 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-11-08 22:15 修改: 2023-11-07 03:51
ncurses-base	CVE-2023-29491	中危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
ncurses-bin	CVE-2023-29491	中危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
perl-base	CVE-2020-16156	中危	5.26.1-6ubuntu0.5	5.26.1-6ubuntu0.6	perl-CPAN: Bypass of verification of signatures in CHECKSUMS files 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16156 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-12-13 18:15 修改: 2023-11-07 03:18
perl-base	CVE-2023-31484	中危	5.26.1-6ubuntu0.5	5.26.1-6ubuntu0.7	perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
tar	CVE-2022-48303	中危	1.29b-2ubuntu0.2	1.29b-2ubuntu0.4	tar: heap buffer overflow at from_header() in list.c via specially crafted checksum 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48303 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2023-01-30 04:15 修改: 2023-05-30 17:16
zlib1g	CVE-2018-25032	中危	1:1.2.11.dfsg-0ubuntu2	1:1.2.11.dfsg-0ubuntu2.1	zlib: A flaw found in zlib when compressing (not decompressing) certain inputs 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-25032 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-03-25 09:15 修改: 2023-11-07 02:56
zlib1g	CVE-2022-37434	中危	1:1.2.11.dfsg-0ubuntu2	1:1.2.11.dfsg-0ubuntu2.2	zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37434 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-08-05 07:15 修改: 2023-07-19 00:56
libc-bin	CVE-2019-25013	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: buffer over-read in iconv when processing invalid multi-byte input sequences in the EUC-KR encoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25013 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-01-04 18:15 修改: 2023-11-09 14:44
libgcrypt20	CVE-2021-33560	低危	1.8.1-4ubuntu1.2	1.8.1-4ubuntu1.3	libgcrypt: mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33560 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-06-08 11:15 修改: 2023-11-07 03:35
libgmp10	CVE-2021-43618	低危	2:6.1.2+dfsg-2	2:6.1.2+dfsg-2ubuntu0.1	gmp: Integer overflow and resultant buffer overflow via crafted input 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43618 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-11-15 04:15 修改: 2023-09-29 15:15
libc-bin	CVE-2020-27618	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: iconv when processing invalid multi-byte input sequences fails to advance the input state, which could result in an infinite loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27618 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-02-26 23:15 修改: 2022-10-28 20:06
libgnutls30	CVE-2021-4209	低危	3.5.18-1ubuntu1.4	3.5.18-1ubuntu1.6	GnuTLS: Null pointer dereference in MD_UPDATE 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4209 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-08-24 16:15 修改: 2022-10-27 16:57
libc-bin	CVE-2020-29562	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: assertion failure in iconv when converting invalid UCS4 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29562 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2020-12-04 07:15 修改: 2023-11-07 03:21
libc-bin	CVE-2020-6096	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: signed comparison vulnerability in the ARMv7 memcpy function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6096 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2020-04-01 22:15 修改: 2023-11-07 03:24
libncurses5	CVE-2019-17594	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
libncurses5	CVE-2019-17595	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libncurses5	CVE-2021-39537	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
libncurses5	CVE-2022-29458	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libc-bin	CVE-2021-3326	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: Assertion failure in ISO-2022-JP-3 gconv module related to combining characters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3326 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-01-27 20:15 修改: 2023-11-07 03:37
libncursesw5	CVE-2019-17594	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
libncursesw5	CVE-2019-17595	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libncursesw5	CVE-2021-39537	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
libncursesw5	CVE-2022-29458	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libpam-modules	CVE-2022-28321	低危	1.1.8-3.6ubuntu2.18.04.3	1.1.8-3.6ubuntu2.18.04.4	pam: authentication bypass for SSH logins 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28321 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-09-19 22:15 修改: 2023-08-08 14:21
libpam-modules-bin	CVE-2022-28321	低危	1.1.8-3.6ubuntu2.18.04.3	1.1.8-3.6ubuntu2.18.04.4	pam: authentication bypass for SSH logins 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28321 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-09-19 22:15 修改: 2023-08-08 14:21
libpam-runtime	CVE-2022-28321	低危	1.1.8-3.6ubuntu2.18.04.3	1.1.8-3.6ubuntu2.18.04.4	pam: authentication bypass for SSH logins 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28321 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-09-19 22:15 修改: 2023-08-08 14:21
libpam0g	CVE-2022-28321	低危	1.1.8-3.6ubuntu2.18.04.3	1.1.8-3.6ubuntu2.18.04.4	pam: authentication bypass for SSH logins 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28321 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-09-19 22:15 修改: 2023-08-08 14:21
libpcre3	CVE-2019-20838	低危	2:8.39-9	2:8.39-9ubuntu0.1	pcre: Buffer over-read in JIT when UTF is disabled and \X or \R has fixed quantifier greater than 1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20838 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2020-06-15 17:15 修改: 2024-03-27 16:05
libpcre3	CVE-2020-14155	低危	2:8.39-9	2:8.39-9ubuntu0.1	pcre: Integer overflow when parsing callout numeric arguments 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14155 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2020-06-15 17:15 修改: 2024-03-27 16:04
libsepol1	CVE-2021-36084	低危	2.7-1	2.7-1ubuntu0.1	libsepol: use-after-free in __cil_verify_classperms() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36084 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1	CVE-2021-36085	低危	2.7-1	2.7-1ubuntu0.1	libsepol: use-after-free in __cil_verify_classperms() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36085 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1	CVE-2021-36086	低危	2.7-1	2.7-1ubuntu0.1	libsepol: use-after-free in cil_reset_classpermission() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36086 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1	CVE-2021-36087	低危	2.7-1	2.7-1ubuntu0.1	libsepol: heap-based buffer overflow in ebitmap_match_any() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36087 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libc-bin	CVE-2021-35942	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: Arbitrary read in wordexp() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35942 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-07-22 18:15 修改: 2023-11-07 03:36
libc-bin	CVE-2022-23218	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: Stack-based buffer overflow in svcunix_create via long pathnames 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23218 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:37
libc-bin	CVE-2022-23219	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: Stack-based buffer overflow in sunrpc clnt_create via a long pathname 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23219 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:32
bash	CVE-2019-18276	低危	4.4.18-2ubuntu1.2	4.4.18-2ubuntu1.3	bash: when effective UID is not equal to its real UID the saved UID is not dropped 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18276 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2019-11-28 01:15 修改: 2023-11-07 03:06
libsystemd0	CVE-2020-13529	低危	237-3ubuntu10.48	237-3ubuntu10.49	systemd: DHCP FORCERENEW authentication not implemented can cause a system running the DHCP client to have its network reconfigured 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13529 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-05-10 16:15 修改: 2023-11-07 03:16
libc6	CVE-2016-10228	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: iconv program can hang when invoked with the -c option 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10228 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2017-03-02 01:59 修改: 2023-11-07 02:29
libtinfo5	CVE-2019-17594	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
libtinfo5	CVE-2019-17595	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libtinfo5	CVE-2021-39537	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
libtinfo5	CVE-2022-29458	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libc6	CVE-2019-25013	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: buffer over-read in iconv when processing invalid multi-byte input sequences in the EUC-KR encoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25013 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-01-04 18:15 修改: 2023-11-09 14:44
libc6	CVE-2020-27618	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: iconv when processing invalid multi-byte input sequences fails to advance the input state, which could result in an infinite loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27618 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-02-26 23:15 修改: 2022-10-28 20:06
libc6	CVE-2020-29562	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: assertion failure in iconv when converting invalid UCS4 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29562 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2020-12-04 07:15 修改: 2023-11-07 03:21
libudev1	CVE-2020-13529	低危	237-3ubuntu10.48	237-3ubuntu10.49	systemd: DHCP FORCERENEW authentication not implemented can cause a system running the DHCP client to have its network reconfigured 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13529 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-05-10 16:15 修改: 2023-11-07 03:16
login	CVE-2018-7169	低危	1:4.5-1ubuntu2	1:4.5-1ubuntu2.2	shadow-utils: newgidmap allows unprivileged user to drop supplementary groups potentially allowing privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7169 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2018-02-15 20:29 修改: 2019-10-03 00:03
libc6	CVE-2020-6096	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: signed comparison vulnerability in the ARMv7 memcpy function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6096 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2020-04-01 22:15 修改: 2023-11-07 03:24
ncurses-base	CVE-2019-17594	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
ncurses-base	CVE-2019-17595	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
ncurses-base	CVE-2021-39537	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
ncurses-base	CVE-2022-29458	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libc6	CVE-2021-3326	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: Assertion failure in ISO-2022-JP-3 gconv module related to combining characters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3326 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-01-27 20:15 修改: 2023-11-07 03:37
ncurses-bin	CVE-2019-17594	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
ncurses-bin	CVE-2019-17595	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
ncurses-bin	CVE-2021-39537	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
ncurses-bin	CVE-2022-29458	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
passwd	CVE-2018-7169	低危	1:4.5-1ubuntu2	1:4.5-1ubuntu2.2	shadow-utils: newgidmap allows unprivileged user to drop supplementary groups potentially allowing privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7169 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2018-02-15 20:29 修改: 2019-10-03 00:03
libc6	CVE-2021-35942	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: Arbitrary read in wordexp() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35942 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-07-22 18:15 修改: 2023-11-07 03:36
libc6	CVE-2022-23218	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: Stack-based buffer overflow in svcunix_create via long pathnames 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23218 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:37
libc6	CVE-2022-23219	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: Stack-based buffer overflow in sunrpc clnt_create via a long pathname 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23219 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:32
tar	CVE-2021-20193	低危	1.29b-2ubuntu0.2	1.29b-2ubuntu0.3	tar: Memory leak in read_header() in list.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20193 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2021-03-26 17:15 修改: 2024-10-24 18:15
gpgv	CVE-2019-13050	低危	2.2.4-1ubuntu1.4	2.2.4-1ubuntu1.5	GnuPG: interaction between the sks-keyserver code and GnuPG allows for a Certificate Spamming Attack which leads to persistent DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13050 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2019-06-29 17:15 修改: 2023-11-07 03:03
libc-bin	CVE-2016-10228	低危	2.27-3ubuntu1.4	2.27-3ubuntu1.5	glibc: iconv program can hang when invoked with the -c option 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10228 镜像层: sha256:878dab86cf0f5ad62033738e93d064580c63a6a2140badccddc8e7bddd45fd94 发布日期: 2017-03-02 01:59 修改: 2023-11-07 02:29

plugins/velero-plugin-for-aws (gobinary)

低危漏洞:2

中危漏洞:39

高危漏洞:51

严重漏洞:4

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
stdlib	CVE-2022-23806	严重	1.13.15	1.16.14, 1.17.7	golang: crypto/elliptic: IsOnCurve returns true for invalid field elements 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23806 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-02-11 01:15 修改: 2023-04-20 00:15
stdlib	CVE-2023-24538	严重	1.13.15	1.19.8, 1.20.3	golang: html/template: backticks not treated as string delimiters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24538 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24540	严重	1.13.15	1.19.9, 1.20.4	golang: html/template: improper handling of JavaScript whitespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24540 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:08
stdlib	CVE-2024-24790	严重	1.13.15	1.21.11, 1.22.4	golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24790 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2024-06-05 16:15 修改: 2024-09-03 18:35
golang.org/x/net	CVE-2024-45338	高危	v0.0.0-20201110031124-69a78807bb2b	0.33.0	golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45338 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2024-12-18 21:15 修改: 2024-12-18 21:15
golang.org/x/text	CVE-2021-38561	高危	v0.3.3	0.3.7	golang: out-of-bounds read in golang.org/x/text/language leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-38561 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-12-26 06:15 修改: 2023-01-05 04:52
golang.org/x/text	CVE-2022-32149	高危	v0.3.3	0.3.8	golang: golang.org/x/text/language: ParseAcceptLanguage takes a long time to parse complex tags 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32149 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-10-14 15:15 修改: 2022-10-18 17:41
google.golang.org/grpc	GHSA-m425-mq94-257g	高危	v1.31.0	1.56.3, 1.57.1, 1.58.3	gRPC-Go HTTP/2 Rapid Reset vulnerability 漏洞详情: https://github.com/advisories/GHSA-m425-mq94-257g 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
golang.org/x/net	CVE-2021-33194	高危	v0.0.0-20201110031124-69a78807bb2b	0.0.0-20210520170846-37e1c6afe023	golang: x/net/html: infinite loop in ParseFragment 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33194 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2021-05-26 15:15 修改: 2023-11-07 03:35
golang.org/x/net	CVE-2022-27664	高危	v0.0.0-20201110031124-69a78807bb2b	0.0.0-20220906165146-f3363e06e74c	golang: net/http: handle server errors after sending GOAWAY 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27664 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-09-06 18:15 修改: 2023-11-07 03:45
golang.org/x/net	CVE-2022-41723	高危	v0.0.0-20201110031124-69a78807bb2b	0.7.0	golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41723 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
golang.org/x/net	CVE-2023-39325	高危	v0.0.0-20201110031124-69a78807bb2b	0.17.0	golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39325 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-10-11 22:15 修改: 2024-04-28 04:15
stdlib	CVE-2021-27918	高危	1.13.15	1.15.9, 1.16.1	golang: encoding/xml: infinite loop when using xml.NewTokenDecoder with a custom TokenReader 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27918 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2021-03-11 00:15 修改: 2022-12-13 16:28
stdlib	CVE-2021-33195	高危	1.13.15	1.15.13, 1.16.5	golang: net: lookup functions may return invalid host names 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33195 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2021-08-02 19:15 修改: 2022-09-14 21:11
stdlib	CVE-2021-33196	高危	1.13.15	1.15.13, 1.16.5	golang: archive/zip: malformed archive may cause panic or memory exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33196 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2021-08-02 19:15 修改: 2023-04-20 00:15
stdlib	CVE-2021-33198	高危	1.13.15	1.15.13, 1.16.5	golang: math/big.Rat: may cause a panic or an unrecoverable fatal error if passed inputs with very large exponents 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33198 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2021-08-02 19:15 修改: 2022-09-14 21:11
stdlib	CVE-2021-39293	高危	1.13.15	1.16.8, 1.17.1	golang: archive/zip: malformed archive may cause panic or memory exhaustion (incomplete fix of CVE-2021-33196) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39293 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-01-24 01:15 修改: 2023-04-20 00:15
stdlib	CVE-2021-41771	高危	1.13.15	1.16.10, 1.17.3	golang: debug/macho: invalid dynamic symbol table command can cause panic 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-41771 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2021-11-08 06:15 修改: 2023-11-07 03:39
stdlib	CVE-2021-41772	高危	1.13.15	1.16.10, 1.17.3	golang: archive/zip: Reader.Open panics on empty string 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-41772 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2021-11-08 06:15 修改: 2023-11-07 03:39
stdlib	CVE-2021-44716	高危	1.13.15	1.16.12, 1.17.5	golang: net/http: limit growth of header canonicalization cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44716 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-01-01 05:15 修改: 2023-04-20 00:15
stdlib	CVE-2022-23772	高危	1.13.15	1.16.14, 1.17.7	golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23772 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-02-11 01:15 修改: 2022-11-09 21:51
stdlib	CVE-2022-24675	高危	1.13.15	1.17.9, 1.18.1	golang: encoding/pem: fix stack overflow in Decode 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24675 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-04-20 10:15 修改: 2023-11-07 03:44
stdlib	CVE-2022-24921	高危	1.13.15	1.16.15, 1.17.8	golang: regexp: stack exhaustion via a deeply nested expression 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24921 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-03-05 20:15 修改: 2023-08-08 14:22
stdlib	CVE-2022-27664	高危	1.13.15	1.18.6, 1.19.1	golang: net/http: handle server errors after sending GOAWAY 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27664 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-09-06 18:15 修改: 2023-11-07 03:45
stdlib	CVE-2022-28131	高危	1.13.15	1.17.12, 1.18.4	golang: encoding/xml: stack exhaustion in Decoder.Skip 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28131 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:45
stdlib	CVE-2022-28327	高危	1.13.15	1.17.9, 1.18.1	golang: crypto/elliptic: panic caused by oversized scalar 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28327 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-04-20 10:15 修改: 2023-11-07 03:45
stdlib	CVE-2022-2879	高危	1.13.15	1.18.7, 1.19.2	golang: archive/tar: unbounded memory consumption when reading headers 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2879 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-10-14 15:15 修改: 2023-11-25 11:15
stdlib	CVE-2022-2880	高危	1.13.15	1.18.7, 1.19.2	golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2880 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-10-14 15:15 修改: 2023-11-25 11:15
stdlib	CVE-2022-29804	高危	1.13.15	1.17.11, 1.18.3	ELSA-2022-17957: ol8addon security update (IMPORTANT) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29804 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:46
stdlib	CVE-2022-30580	高危	1.13.15	1.17.11, 1.18.3	golang: os/exec: Code injection in Cmd.Start 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30580 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-30630	高危	1.13.15	1.17.12, 1.18.4	golang: io/fs: stack exhaustion in Glob 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30630 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-30631	高危	1.13.15	1.17.12, 1.18.4	golang: compress/gzip: stack exhaustion in Reader.Read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30631 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-30632	高危	1.13.15	1.17.12, 1.18.4	golang: path/filepath: stack exhaustion in Glob 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30632 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-30633	高危	1.13.15	1.17.12, 1.18.4	golang: encoding/xml: stack exhaustion in Unmarshal 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30633 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-30634	高危	1.13.15	1.17.11, 1.18.3	ELSA-2022-17957: ol8addon security update (IMPORTANT) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30634 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-07-15 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-30635	高危	1.13.15	1.17.12, 1.18.4	golang: encoding/gob: stack exhaustion in Decoder.Decode 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30635 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-32189	高危	1.13.15	1.17.13, 1.18.5	golang: math/big: decoding big.Float and big.Rat types can panic if the encoded message is too short, potentially allowing a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32189 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-08-10 20:15 修改: 2023-03-03 15:39
stdlib	CVE-2022-41715	高危	1.13.15	1.18.7, 1.19.2	golang: regexp/syntax: limit memory used by parsing regexps 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41715 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-10-14 15:16 修改: 2023-11-25 11:15
stdlib	CVE-2022-41716	高危	1.13.15	1.18.8, 1.19.3	Due to unsanitized NUL values, attackers may be able to maliciously se ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41716 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-11-02 16:15 修改: 2024-10-30 14:35
stdlib	CVE-2022-41720	高危	1.13.15	1.18.9, 1.19.4	golang: os, net/http: avoid escapes from os.DirFS and http.Dir on Windows 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41720 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-12-07 17:15 修改: 2022-12-12 14:58
stdlib	CVE-2022-41722	高危	1.13.15	1.19.6, 1.20.1	golang: path/filepath: path-filepath filepath.Clean path traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41722 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-02-28 18:15 修改: 2023-11-07 03:52
stdlib	CVE-2022-41723	高危	1.13.15	1.19.6, 1.20.1	golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41723 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
stdlib	CVE-2022-41724	高危	1.13.15	1.19.6, 1.20.1	golang: crypto/tls: large handshake records may cause panics 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41724 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
stdlib	CVE-2022-41725	高危	1.13.15	1.19.6, 1.20.1	golang: net/http, mime/multipart: denial of service from excessive resource consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41725 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24534	高危	1.13.15	1.19.8, 1.20.3	golang: net/http, net/textproto: denial of service from excessive memory allocation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24534 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24536	高危	1.13.15	1.19.8, 1.20.3	golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24536 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24537	高危	1.13.15	1.19.8, 1.20.3	golang: go/parser: Infinite loop in parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24537 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-04-06 16:15 修改: 2024-11-29 12:15
stdlib	CVE-2023-24539	高危	1.13.15	1.19.9, 1.20.4	golang: html/template: improper sanitization of CSS values 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24539 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-05-11 16:15 修改: 2024-11-29 12:15
stdlib	CVE-2023-29400	高危	1.13.15	1.19.9, 1.20.4	golang: html/template: improper handling of empty HTML attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29400 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-05-11 16:15 修改: 2024-12-13 14:15
stdlib	CVE-2023-29403	高危	1.13.15	1.19.10, 1.20.5	golang: runtime: unexpected behavior of setuid/setgid binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29403 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-06-08 21:15 修改: 2024-12-20 13:15
stdlib	CVE-2023-39325	高危	1.13.15	1.20.10, 1.21.3	golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39325 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-10-11 22:15 修改: 2024-04-28 04:15
stdlib	CVE-2023-45283	高危	1.13.15	1.20.11, 1.21.4, 1.20.12, 1.21.5	The filepath package does not recognize paths with a \??\ prefix as sp ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45283 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-11-09 17:15 修改: 2023-12-14 10:15
stdlib	CVE-2023-45287	高危	1.13.15	1.20.0	golang: crypto/tls: Timing Side Channel attack in RSA based TLS key exchanges. 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45287 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-12-05 17:15 修改: 2024-01-12 14:15
stdlib	CVE-2023-45288	高危	1.13.15	1.21.9, 1.22.2	golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45288 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2024-04-04 21:15 修改: 2024-08-26 21:35
stdlib	CVE-2024-34156	高危	1.13.15	1.22.7, 1.23.1	encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
golang.org/x/net	CVE-2023-44487	中危	v0.0.0-20201110031124-69a78807bb2b	0.17.0	HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-10-10 14:15 修改: 2024-12-20 17:40
golang.org/x/net	CVE-2023-45288	中危	v0.0.0-20201110031124-69a78807bb2b	0.23.0	golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45288 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2024-04-04 21:15 修改: 2024-08-26 21:35
golang.org/x/sys	CVE-2022-29526	中危	v0.0.0-20210112080510-489259a85091	0.0.0-20220412211240-33da011f77ad	golang: syscall: faccessat checks wrong group 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29526 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-06-23 17:15 修改: 2023-11-07 03:46
github.com/aws/aws-sdk-go	GHSA-76wf-9vgp-pj7w	中危	v1.30.13	1.34.0	Unencrypted md5 plaintext hash in metadata in AWS S3 Crypto SDK for golang 漏洞详情: https://github.com/advisories/GHSA-76wf-9vgp-pj7w 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/aws/aws-sdk-go	CVE-2020-8911	中危	v1.30.13	1.34.0	aws/aws-sdk-go: CBC padding oracle issue in AWS S3 Crypto SDK for golang 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8911 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2020-08-11 20:15 修改: 2020-08-18 13:37
github.com/aws/aws-sdk-go	CVE-2022-2582	中危	v1.30.13	1.34.0	The AWS S3 Crypto SDK sends an unencrypted hash of the plaintext along ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2582 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-12-27 22:15 修改: 2023-01-05 04:43
google.golang.org/grpc	CVE-2023-44487	中危	v1.31.0	1.58.3, 1.57.1, 1.56.3	HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-10-10 14:15 修改: 2024-12-20 17:40
google.golang.org/protobuf	CVE-2024-24786	中危	v1.25.0	1.33.0	golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24786 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2024-03-05 23:15 修改: 2024-11-07 17:35
golang.org/x/net	CVE-2021-31525	中危	v0.0.0-20201110031124-69a78807bb2b	0.0.0-20210428140749-89ef3d95e781	golang: net/http: panic in ReadRequest and ReadResponse when reading a very large header 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31525 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2021-05-27 13:15 修改: 2023-11-07 03:34
golang.org/x/net	CVE-2022-41717	中危	v0.0.0-20201110031124-69a78807bb2b	0.4.0	golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41717 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-12-08 20:15 修改: 2024-01-18 03:15
golang.org/x/net	CVE-2023-3978	中危	v0.0.0-20201110031124-69a78807bb2b	0.13.0	golang.org/x/net/html: Cross site scripting 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3978 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-08-02 20:15 修改: 2023-11-07 04:20
stdlib	CVE-2020-24553	中危	1.13.15	1.14.8, 1.15.1	golang: default Content-Type setting in net/http/cgi and net/http/fcgi could cause XSS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24553 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2020-09-02 17:15 修改: 2023-11-07 03:20
stdlib	CVE-2021-3114	中危	1.13.15	1.14.14, 1.15.7	golang: crypto/elliptic: incorrect operations on the P-224 curve 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3114 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2021-01-26 18:16 修改: 2023-11-07 03:37
stdlib	CVE-2021-31525	中危	1.13.15	1.15.12, 1.16.4	golang: net/http: panic in ReadRequest and ReadResponse when reading a very large header 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31525 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2021-05-27 13:15 修改: 2023-11-07 03:34
stdlib	CVE-2021-33197	中危	1.13.15	1.15.13, 1.16.5	golang: net/http/httputil: ReverseProxy forwards connection headers if first one is empty 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33197 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2021-08-02 19:15 修改: 2022-09-14 21:11
stdlib	CVE-2021-34558	中危	1.13.15	1.15.14, 1.16.6	golang: crypto/tls: certificate of wrong type is causing TLS client to panic 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-34558 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2021-07-15 14:15 修改: 2023-11-07 03:36
stdlib	CVE-2021-36221	中危	1.13.15	1.15.15, 1.16.7	golang: net/http/httputil: panic due to racy read of persistConn after handler panic 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36221 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2021-08-08 06:15 修改: 2023-11-07 03:36
stdlib	CVE-2021-44717	中危	1.13.15	1.16.12, 1.17.5	golang: syscall: don't close fd 0 on ForkExec error 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44717 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-01-01 05:15 修改: 2023-08-08 14:22
stdlib	CVE-2022-1705	中危	1.13.15	1.17.12, 1.18.4	golang: net/http: improper sanitization of Transfer-Encoding header 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1705 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:42
stdlib	CVE-2022-1962	中危	1.13.15	1.17.12, 1.18.4	golang: go/parser: stack exhaustion in all Parse* functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1962 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:42
stdlib	CVE-2022-29526	中危	1.13.15	1.17.10, 1.18.2	golang: syscall: faccessat checks wrong group 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29526 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-06-23 17:15 修改: 2023-11-07 03:46
stdlib	CVE-2022-32148	中危	1.13.15	1.17.12, 1.18.4	golang: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32148 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47
stdlib	CVE-2022-41717	中危	1.13.15	1.18.9, 1.19.4	golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41717 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-12-08 20:15 修改: 2024-01-18 03:15
stdlib	CVE-2023-24532	中危	1.13.15	1.19.7, 1.20.2	golang: crypto/internal/nistec: specific unreduced P-256 scalars produce incorrect results 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24532 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-03-08 20:15 修改: 2023-11-07 04:08
stdlib	CVE-2023-29406	中危	1.13.15	1.19.11, 1.20.6	golang: net/http: insufficient sanitization of Host header 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29406 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-07-11 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-29409	中危	1.13.15	1.19.12, 1.20.7, 1.21.0-rc.4	golang: crypto/tls: slow verification of certificate chains containing large RSA keys 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29409 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-08-02 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39318	中危	1.13.15	1.20.8, 1.21.1	golang: html/template: improper handling of HTML-like comments within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39318 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39319	中危	1.13.15	1.20.8, 1.21.1	golang: html/template: improper handling of special tags within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39319 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39326	中危	1.13.15	1.20.12, 1.21.5	golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39326 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-12-06 17:15 修改: 2024-01-20 04:15
stdlib	CVE-2023-45284	中危	1.13.15	1.20.11, 1.21.4	On Windows, The IsLocal function does not correctly detect reserved de ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45284 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2023-11-09 17:15 修改: 2024-09-03 19:35
stdlib	CVE-2023-45289	中危	1.13.15	1.21.8, 1.22.1	golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45289 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2024-03-05 23:15 修改: 2024-11-04 19:35
stdlib	CVE-2023-45290	中危	1.13.15	1.21.8, 1.22.1	golang: net/http: golang: mime/multipart: golang: net/textproto: memory exhaustion in Request.ParseMultipartForm 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45290 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2024-03-05 23:15 修改: 2024-11-07 11:35
stdlib	CVE-2024-24783	中危	1.13.15	1.21.8, 1.22.1	golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24783 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2024-03-05 23:15 修改: 2024-11-05 17:35
stdlib	CVE-2024-24784	中危	1.13.15	1.21.8, 1.22.1	golang: net/mail: comments in display names are incorrectly handled 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24784 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2024-03-05 23:15 修改: 2024-08-05 21:35
stdlib	CVE-2024-24785	中危	1.13.15	1.21.8, 1.22.1	golang: html/template: errors returned from MarshalJSON methods may break template escaping 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24785 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2024-03-05 23:15 修改: 2024-05-01 17:15
stdlib	CVE-2024-24789	中危	1.13.15	1.21.11, 1.22.4	golang: archive/zip: Incorrect handling of certain ZIP files 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24789 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2024-06-05 16:15 修改: 2024-07-03 01:48
stdlib	CVE-2024-24791	中危	1.13.15	1.21.12, 1.22.5	net/http: Denial of service due to improper 100-continue handling in net/http 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24791 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2024-07-02 22:15 修改: 2024-07-08 14:17
stdlib	CVE-2024-34155	中危	1.13.15	1.22.7, 1.23.1	go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2024-09-06 21:15 修改: 2024-11-04 17:35
stdlib	CVE-2024-34158	中危	1.13.15	1.22.7, 1.23.1	go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35
github.com/aws/aws-sdk-go	CVE-2020-8912	低危	v1.30.13	1.34.0	aws-sdk-go: In-band key negotiation issue in AWS S3 Crypto SDK for golang 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8912 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2020-08-11 20:15 修改: 2020-08-17 19:31
stdlib	CVE-2022-30629	低危	1.13.15	1.17.11, 1.18.3	golang: crypto/tls: session tickets lack random ticket_age_add 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30629 镜像层: sha256:759486e43ec1e2070d9140f91f7dc4d30bba0f0874a3fe6f45cf66877dab84af 发布日期: 2022-08-10 20:15 修改: 2023-11-07 03:47