| libgnutls30 |
CVE-2026-33845 |
严重 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u7 |
gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
|
| libgnutls30 |
CVE-2026-42010 |
严重 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Authentication Bypass via NUL Character in Username
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-07 12:16 修改: 2026-06-10 16:17
|
| libssl3 |
CVE-2026-31789 |
严重 |
3.0.15-1~deb12u1 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| perl-base |
CVE-2026-42496 |
严重 |
5.36.0-7+deb12u1 |
|
perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
|
| perl-base |
CVE-2026-8376 |
严重 |
5.36.0-7+deb12u1 |
|
Perl versions through 5.43.10 have a heap buffer overflow when compili ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-26 00:16 修改: 2026-05-27 19:16
|
| zlib1g |
CVE-2023-45853 |
严重 |
1:1.2.13.dfsg-1 |
|
zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45853
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-10-14 02:15 修改: 2024-12-20 17:41
|
| libgnutls30 |
CVE-2026-33846 |
高危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u7 |
gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-04 10:15 修改: 2026-06-02 16:16
|
| libgnutls30 |
CVE-2026-3833 |
高危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u7 |
gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
|
| libgnutls30 |
CVE-2026-42009 |
高危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-18 13:16 修改: 2026-06-08 17:16
|
| libpam-modules |
CVE-2025-6020 |
高危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
linux-pam: Linux-pam directory Traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-06-17 13:15 修改: 2026-05-12 13:17
|
| libpam-modules-bin |
CVE-2025-6020 |
高危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
linux-pam: Linux-pam directory Traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-06-17 13:15 修改: 2026-05-12 13:17
|
| libpam-runtime |
CVE-2025-6020 |
高危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
linux-pam: Linux-pam directory Traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-06-17 13:15 修改: 2026-05-12 13:17
|
| libpam0g |
CVE-2025-6020 |
高危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
linux-pam: Linux-pam directory Traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-06-17 13:15 修改: 2026-05-12 13:17
|
| gpgv |
CVE-2025-68973 |
高危 |
2.2.40-1.1 |
2.2.40-1.1+deb12u2 |
GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
|
| libssl3 |
CVE-2025-15467 |
高危 |
3.0.15-1~deb12u1 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-01-27 16:16 修改: 2026-06-09 10:16
|
| libssl3 |
CVE-2025-69421 |
高危 |
3.0.15-1~deb12u1 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28387 |
高危 |
3.0.15-1~deb12u1 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28388 |
高危 |
3.0.15-1~deb12u1 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28389 |
高危 |
3.0.15-1~deb12u1 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28390 |
高危 |
3.0.15-1~deb12u1 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-45447 |
高危 |
3.0.15-1~deb12u1 |
3.0.20-1~deb12u2 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:56
|
| libtinfo6 |
CVE-2025-69720 |
高危 |
6.4-4 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
|
| ncurses-base |
CVE-2025-69720 |
高危 |
6.4-4 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
|
| ncurses-bin |
CVE-2025-69720 |
高危 |
6.4-4 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
|
| openssh-client |
CVE-2026-3497 |
高危 |
1:9.2p1-2+deb12u5 |
1:9.2p1-2+deb12u9 |
openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3497
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-03-12 19:16 修改: 2026-06-02 19:43
|
| openssh-client |
CVE-2026-35385 |
高危 |
1:9.2p1-2+deb12u5 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35385
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:02
|
| openssh-client |
CVE-2026-35386 |
高危 |
1:9.2p1-2+deb12u5 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Arbitrary command execution via shell metacharacters in username
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35386
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:03
|
| openssh-client |
CVE-2026-35414 |
高危 |
1:9.2p1-2+deb12u5 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Security bypass via mishandling of authorized_keys principals option
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35414
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-04-02 18:16 修改: 2026-04-10 19:36
|
| libcap2 |
CVE-2026-4878 |
高危 |
1:2.66-4 |
1:2.66-4+deb12u3 |
libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-09 16:16 修改: 2026-06-11 10:16
|
| libgnutls30 |
CVE-2025-32988 |
高危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u5 |
gnutls: Vulnerability in GnuTLS otherName SAN export
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32988
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-07-10 08:15 修改: 2026-05-12 13:16
|
| perl-base |
CVE-2023-31484 |
高危 |
5.36.0-7+deb12u1 |
5.36.0-7+deb12u3 |
perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-04-29 00:15 修改: 2025-11-03 22:16
|
| perl-base |
CVE-2024-56406 |
高危 |
5.36.0-7+deb12u1 |
5.36.0-7+deb12u2 |
perl: Perl 5.34, 5.36, 5.38 and 5.40 are vulnerable to a heap buffer overflow when transliterating non-ASCII bytes
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56406
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-04-13 14:15 修改: 2025-10-16 14:15
|
| perl-base |
CVE-2026-42497 |
高危 |
5.36.0-7+deb12u1 |
|
perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
|
| perl-base |
CVE-2026-48962 |
高危 |
5.36.0-7+deb12u1 |
|
perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-27 04:16 修改: 2026-05-27 19:38
|
| perl-base |
CVE-2026-9538 |
高危 |
5.36.0-7+deb12u1 |
|
Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
|
| libgnutls30 |
CVE-2025-32990 |
高危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u5 |
gnutls: Vulnerability in GnuTLS certtool template parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32990
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-07-10 10:15 修改: 2026-04-20 22:16
|
| libbz2-1.0 |
CVE-2026-42250 |
中危 |
1.0.8-5+b1 |
|
bzip2: bzip2: Denial of Service in bzip2recover via a specially crafted file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42250
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-28 14:16 修改: 2026-06-05 08:16
|
| libgnutls30 |
CVE-2025-14831 |
中危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u6 |
gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14831
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-02-09 15:16 修改: 2026-06-10 18:16
|
| libgnutls30 |
CVE-2025-32989 |
中危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u5 |
gnutls: Vulnerability in GnuTLS SCT extension parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32989
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-07-10 08:15 修改: 2026-05-12 13:16
|
| libgnutls30 |
CVE-2025-6395 |
中危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u5 |
gnutls: NULL pointer dereference in _gnutls_figure_common_ciphersuite()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6395
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-07-10 16:15 修改: 2026-05-12 13:17
|
| libgnutls30 |
CVE-2026-42011 |
中危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Security bypass due to incorrect name constraint handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-07 15:16 修改: 2026-06-02 16:16
|
| libgnutls30 |
CVE-2026-42012 |
中危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| libgnutls30 |
CVE-2026-42013 |
中危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| libgnutls30 |
CVE-2026-42014 |
中危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u7 |
gnutls: Fix use-after-free in gnutls_pkcs11_token_set_pin
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-06-16 02:16 修改: 2026-06-16 15:26
|
| libgnutls30 |
CVE-2026-42015 |
中危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| libgnutls30 |
CVE-2026-5260 |
中危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Information disclosure via heap overread in RSA key exchange
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| libgssapi-krb5-2 |
CVE-2024-26462 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u3 |
krb5: Memory leak at /krb5/src/kdc/ndr.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2024-02-29 01:44 修改: 2025-03-25 20:15
|
| libgssapi-krb5-2 |
CVE-2025-24528 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u3 |
krb5: overflow when calculating ulog block size
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24528
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-01-16 18:16 修改: 2026-04-15 00:35
|
| libgssapi-krb5-2 |
CVE-2025-3576 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u4 |
krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2025-04-15 06:15 修改: 2026-05-12 13:17
|
| libgssapi-krb5-2 |
CVE-2026-40355 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-04-28 06:16 修改: 2026-04-28 20:11
|
| libgssapi-krb5-2 |
CVE-2026-40356 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-04-28 07:16 修改: 2026-04-28 20:11
|
| libk5crypto3 |
CVE-2024-26462 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u3 |
krb5: Memory leak at /krb5/src/kdc/ndr.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2024-02-29 01:44 修改: 2025-03-25 20:15
|
| libk5crypto3 |
CVE-2025-24528 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u3 |
krb5: overflow when calculating ulog block size
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24528
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-01-16 18:16 修改: 2026-04-15 00:35
|
| libk5crypto3 |
CVE-2025-3576 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u4 |
krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2025-04-15 06:15 修改: 2026-05-12 13:17
|
| libk5crypto3 |
CVE-2026-40355 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-04-28 06:16 修改: 2026-04-28 20:11
|
| libk5crypto3 |
CVE-2026-40356 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-04-28 07:16 修改: 2026-04-28 20:11
|
| libkrb5-3 |
CVE-2024-26462 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u3 |
krb5: Memory leak at /krb5/src/kdc/ndr.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2024-02-29 01:44 修改: 2025-03-25 20:15
|
| libkrb5-3 |
CVE-2025-24528 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u3 |
krb5: overflow when calculating ulog block size
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24528
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-01-16 18:16 修改: 2026-04-15 00:35
|
| libkrb5-3 |
CVE-2025-3576 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u4 |
krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2025-04-15 06:15 修改: 2026-05-12 13:17
|
| libkrb5-3 |
CVE-2026-40355 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-04-28 06:16 修改: 2026-04-28 20:11
|
| libkrb5-3 |
CVE-2026-40356 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-04-28 07:16 修改: 2026-04-28 20:11
|
| libkrb5support0 |
CVE-2024-26462 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u3 |
krb5: Memory leak at /krb5/src/kdc/ndr.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2024-02-29 01:44 修改: 2025-03-25 20:15
|
| libkrb5support0 |
CVE-2025-24528 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u3 |
krb5: overflow when calculating ulog block size
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24528
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-01-16 18:16 修改: 2026-04-15 00:35
|
| libkrb5support0 |
CVE-2025-3576 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u4 |
krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2025-04-15 06:15 修改: 2026-05-12 13:17
|
| libkrb5support0 |
CVE-2026-40355 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-04-28 06:16 修改: 2026-04-28 20:11
|
| libkrb5support0 |
CVE-2026-40356 |
中危 |
1.20.1-2+deb12u2 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-04-28 07:16 修改: 2026-04-28 20:11
|
| liblzma5 |
CVE-2026-34743 |
中危 |
5.4.1-1 |
|
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-02 19:21 修改: 2026-04-15 17:33
|
| libmount1 |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libmount1 |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| libc-bin |
CVE-2025-4802 |
中危 |
2.36-9+deb12u10 |
2.36-9+deb12u11 |
glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4802
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-05-16 20:15 修改: 2025-11-03 20:19
|
| libpam-modules |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
|
| libpam-modules |
CVE-2024-22365 |
中危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2024-02-06 08:15 修改: 2026-05-12 12:16
|
| libpam-modules |
CVE-2026-54411 |
中危 |
1.5.2-6+deb12u1 |
|
linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-06-14 18:17 修改: 2026-06-16 15:36
|
| libc-bin |
CVE-2025-8058 |
中危 |
2.36-9+deb12u10 |
2.36-9+deb12u13 |
glibc: Double free in glibc
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8058
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-07-23 20:15 修改: 2026-04-15 00:35
|
| libpam-modules-bin |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
|
| libpam-modules-bin |
CVE-2024-22365 |
中危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2024-02-06 08:15 修改: 2026-05-12 12:16
|
| libpam-modules-bin |
CVE-2026-54411 |
中危 |
1.5.2-6+deb12u1 |
|
linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-06-14 18:17 修改: 2026-06-16 15:36
|
| libc-bin |
CVE-2026-0915 |
中危 |
2.36-9+deb12u10 |
2.36-9+deb12u14 |
glibc: glibc: Information disclosure via zero-valued network query
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-01-15 22:16 修改: 2026-01-23 19:36
|
| libpam-runtime |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
|
| libpam-runtime |
CVE-2024-22365 |
中危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2024-02-06 08:15 修改: 2026-05-12 12:16
|
| libpam-runtime |
CVE-2026-54411 |
中危 |
1.5.2-6+deb12u1 |
|
linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-06-14 18:17 修改: 2026-06-16 15:36
|
| libc-bin |
CVE-2026-4046 |
中危 |
2.36-9+deb12u10 |
2.36-9+deb12u14 |
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-03-30 18:16 修改: 2026-04-20 22:16
|
| libpam0g |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
|
| libpam0g |
CVE-2024-22365 |
中危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2024-02-06 08:15 修改: 2026-05-12 12:16
|
| libpam0g |
CVE-2026-54411 |
中危 |
1.5.2-6+deb12u1 |
|
linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-06-14 18:17 修改: 2026-06-16 15:36
|
| libsmartcols1 |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libsmartcols1 |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| libc-bin |
CVE-2026-4437 |
中危 |
2.36-9+deb12u10 |
2.36-9+deb12u14 |
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:41
|
| libc-bin |
CVE-2026-5435 |
中危 |
2.36-9+deb12u10 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| libc-bin |
CVE-2026-5450 |
中危 |
2.36-9+deb12u10 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| libc-bin |
CVE-2026-5928 |
中危 |
2.36-9+deb12u10 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| libc-bin |
CVE-2026-6238 |
中危 |
2.36-9+deb12u10 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
|
| libc6 |
CVE-2025-4802 |
中危 |
2.36-9+deb12u10 |
2.36-9+deb12u11 |
glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4802
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-05-16 20:15 修改: 2025-11-03 20:19
|
| libc6 |
CVE-2025-8058 |
中危 |
2.36-9+deb12u10 |
2.36-9+deb12u13 |
glibc: Double free in glibc
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8058
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-07-23 20:15 修改: 2026-04-15 00:35
|
| libc6 |
CVE-2026-0915 |
中危 |
2.36-9+deb12u10 |
2.36-9+deb12u14 |
glibc: glibc: Information disclosure via zero-valued network query
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-01-15 22:16 修改: 2026-01-23 19:36
|
| libssl3 |
CVE-2025-69419 |
中危 |
3.0.15-1~deb12u1 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2025-9230 |
中危 |
3.0.15-1~deb12u1 |
3.0.17-1~deb12u3 |
openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
|
| libssl3 |
CVE-2026-31790 |
中危 |
3.0.15-1~deb12u1 |
3.0.19-1~deb12u2 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-34182 |
中危 |
3.0.15-1~deb12u1 |
3.0.20-1~deb12u2 |
openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:13
|
| libssl3 |
CVE-2026-45445 |
中危 |
3.0.15-1~deb12u1 |
3.0.20-1~deb12u2 |
openssl: AES-OCB IV Ignored on EVP_Cipher() Path
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:57
|
| libsystemd0 |
CVE-2025-4598 |
中危 |
252.36-1~deb12u1 |
252.38-1~deb12u1 |
systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4598
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-05-30 14:15 修改: 2026-05-19 16:16
|
| libsystemd0 |
CVE-2026-29111 |
中危 |
252.36-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
|
| libsystemd0 |
CVE-2026-40225 |
中危 |
252.36-1~deb12u1 |
252.39-1~deb12u2 |
systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-10 16:16 修改: 2026-04-27 19:00
|
| libsystemd0 |
CVE-2026-40226 |
中危 |
252.36-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd nspawn: Escape-to-host action via crafted config file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
|
| libsystemd0 |
CVE-2026-4105 |
中危 |
252.36-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-03-13 19:55 修改: 2026-04-30 17:16
|
| libc6 |
CVE-2026-4046 |
中危 |
2.36-9+deb12u10 |
2.36-9+deb12u14 |
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-03-30 18:16 修改: 2026-04-20 22:16
|
| libtinfo6 |
CVE-2023-50495 |
中危 |
6.4-4 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
|
| libudev1 |
CVE-2025-4598 |
中危 |
252.36-1~deb12u1 |
252.38-1~deb12u1 |
systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4598
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-05-30 14:15 修改: 2026-05-19 16:16
|
| libudev1 |
CVE-2026-29111 |
中危 |
252.36-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
|
| libudev1 |
CVE-2026-40225 |
中危 |
252.36-1~deb12u1 |
252.39-1~deb12u2 |
systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-10 16:16 修改: 2026-04-27 19:00
|
| libudev1 |
CVE-2026-40226 |
中危 |
252.36-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd nspawn: Escape-to-host action via crafted config file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
|
| libudev1 |
CVE-2026-4105 |
中危 |
252.36-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-03-13 19:55 修改: 2026-04-30 17:16
|
| libuuid1 |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libuuid1 |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| login |
CVE-2023-4641 |
中危 |
1:4.13+dfsg1-1+b1 |
1:4.13+dfsg1-1+deb12u1 |
shadow-utils: possible password leak during passwd(1) change
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-12-27 16:15 修改: 2025-11-03 20:16
|
| mount |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| mount |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| libc6 |
CVE-2026-4437 |
中危 |
2.36-9+deb12u10 |
2.36-9+deb12u14 |
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:41
|
| ncurses-base |
CVE-2023-50495 |
中危 |
6.4-4 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
|
| libc6 |
CVE-2026-5435 |
中危 |
2.36-9+deb12u10 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| ncurses-bin |
CVE-2023-50495 |
中危 |
6.4-4 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
|
| libc6 |
CVE-2026-5450 |
中危 |
2.36-9+deb12u10 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| libc6 |
CVE-2026-5928 |
中危 |
2.36-9+deb12u10 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| libc6 |
CVE-2026-6238 |
中危 |
2.36-9+deb12u10 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
|
| bsdutils |
CVE-2026-3184 |
中危 |
1:2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| openssh-client |
CVE-2025-61984 |
中危 |
1:9.2p1-2+deb12u5 |
1:9.2p1-2+deb12u8 |
openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61984
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
|
| openssh-client |
CVE-2025-61985 |
中危 |
1:9.2p1-2+deb12u5 |
1:9.2p1-2+deb12u8 |
openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61985
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
|
| openssh-client |
CVE-2026-35387 |
中危 |
1:9.2p1-2+deb12u5 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Information disclosure due to unintended cryptographic algorithm usage
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35387
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:05
|
| passwd |
CVE-2023-4641 |
中危 |
1:4.13+dfsg1-1+b1 |
1:4.13+dfsg1-1+deb12u1 |
shadow-utils: possible password leak during passwd(1) change
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-12-27 16:15 修改: 2025-11-03 20:16
|
| libcap2 |
CVE-2025-1390 |
中危 |
1:2.66-4 |
1:2.66-4+deb12u1 |
libcap: pam_cap: Fix potential configuration parsing error
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1390
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-02-18 03:15 修改: 2026-04-15 00:35
|
| libgcrypt20 |
CVE-2026-41989 |
中危 |
1.10.1-3 |
1.10.1-3+deb12u1 |
Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-23 05:16 修改: 2026-04-27 18:33
|
| dpkg |
CVE-2026-2219 |
中危 |
1.21.22 |
1.21.23 |
It was discovered that dpkg-deb (a component of dpkg, the Debian packa ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2219
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-03-07 09:16 修改: 2026-06-02 19:12
|
| bsdutils |
CVE-2026-27456 |
中危 |
1:2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| gpgv |
CVE-2025-30258 |
中危 |
2.2.40-1.1 |
|
gnupg: verification DoS due to a malicious subkey in the keyring
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
|
| gpgv |
CVE-2025-68972 |
中危 |
2.2.40-1.1 |
|
gnupg: GnuPG: Signature bypass via form feed character in signed messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
|
| libblkid1 |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| perl-base |
CVE-2025-15649 |
中危 |
5.36.0-7+deb12u1 |
|
perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
|
| perl-base |
CVE-2025-40909 |
中危 |
5.36.0-7+deb12u1 |
5.36.0-7+deb12u3 |
perl: Perl threads have a working directory race condition where file operations may target unintended paths
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-05-30 13:15 修改: 2026-04-18 15:16
|
| perl-base |
CVE-2026-12087 |
中危 |
5.36.0-7+deb12u1 |
|
perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-06-15 22:16 修改: 2026-06-16 17:16
|
| perl-base |
CVE-2026-48959 |
中危 |
5.36.0-7+deb12u1 |
|
perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
|
| perl-base |
CVE-2026-48961 |
中危 |
5.36.0-7+deb12u1 |
|
perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
|
| perl-base |
CVE-2026-7010 |
中危 |
5.36.0-7+deb12u1 |
|
HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-05-11 22:22 修改: 2026-05-12 16:48
|
| sed |
CVE-2026-5958 |
中危 |
4.9-1 |
4.9-1+deb12u1 |
sed: GNU sed TOCTOU race condition
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5958
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-20 12:16 修改: 2026-05-19 15:17
|
| tar |
CVE-2026-5704 |
中危 |
1.34+dfsg-1.2+deb12u1 |
|
tar: tar: Hidden file injection via crafted archives
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-06 16:16 修改: 2026-04-22 20:08
|
| util-linux |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| util-linux |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| util-linux-extra |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| util-linux-extra |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| libblkid1 |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| zlib1g |
CVE-2026-27171 |
中危 |
1:1.2.13.dfsg-1 |
|
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-02-18 04:16 修改: 2026-03-25 21:27
|
| libsmartcols1 |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| coreutils |
CVE-2025-5278 |
低危 |
9.1-1 |
|
coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5278
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-05-27 21:15 修改: 2026-05-19 17:16
|
| apt |
CVE-2011-3374 |
低危 |
2.6.1 |
|
It was found that apt-key in apt, all versions, do not correctly valid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
|
| dpkg |
CVE-2025-6297 |
低危 |
1.21.22 |
1.21.23 |
It was discovered that dpkg-deb does not properly sanitize directory p ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6297
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-07-01 17:15 修改: 2025-08-19 17:50
|
| gcc-12-base |
CVE-2022-27943 |
低危 |
12.2.0-14 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
|
| gcc-12-base |
CVE-2023-4039 |
低危 |
12.2.0-14 |
12.2.0-14+deb12u1 |
gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-09-13 09:15 修改: 2025-02-13 17:17
|
| libgssapi-krb5-2 |
CVE-2018-5709 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
|
| libgssapi-krb5-2 |
CVE-2024-26458 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
|
| libgssapi-krb5-2 |
CVE-2024-26461 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
|
| libgssapi-krb5-2 |
CVE-2026-11850 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-06-11 10:16 修改: 2026-06-12 15:16
|
| libc6 |
CVE-2010-4756 |
低危 |
2.36-9+deb12u10 |
|
glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions
漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
|
| libc6 |
CVE-2018-20796 |
低危 |
2.36-9+deb12u10 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
|
| libc6 |
CVE-2019-1010022 |
低危 |
2.36-9+deb12u10 |
|
glibc: stack guard protection bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc6 |
CVE-2019-1010023 |
低危 |
2.36-9+deb12u10 |
|
glibc: running ldd on malicious ELF leads to code execution because of wrong size computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libssl3 |
CVE-2024-13176 |
低危 |
3.0.15-1~deb12u1 |
3.0.16-1~deb12u1 |
openssl: Timing side-channel in ECDSA signature computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13176
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2025-01-20 14:15 修改: 2026-04-15 00:35
|
| libssl3 |
CVE-2025-27587 |
低危 |
3.0.15-1~deb12u1 |
|
OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2025-06-16 22:15 修改: 2026-04-15 00:35
|
| libssl3 |
CVE-2025-68160 |
低危 |
3.0.15-1~deb12u1 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2025-69418 |
低危 |
3.0.15-1~deb12u1 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2025-69420 |
低危 |
3.0.15-1~deb12u1 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Denial of Service via malformed TimeStamp Response
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2025-9232 |
低危 |
3.0.15-1~deb12u1 |
3.0.17-1~deb12u3 |
openssl: Out-of-bounds read in HTTP client no_proxy handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9232
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
|
| libssl3 |
CVE-2026-22795 |
低危 |
3.0.15-1~deb12u1 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-22796 |
低危 |
3.0.15-1~deb12u1 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-34180 |
低危 |
3.0.15-1~deb12u1 |
3.0.20-1~deb12u2 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:13
|
| libssl3 |
CVE-2026-42766 |
低危 |
3.0.15-1~deb12u1 |
3.0.20-1~deb12u2 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:25
|
| libssl3 |
CVE-2026-42767 |
低危 |
3.0.15-1~deb12u1 |
|
openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:58
|
| libssl3 |
CVE-2026-42770 |
低危 |
3.0.15-1~deb12u1 |
3.0.20-1~deb12u2 |
openssl: FFC-DH Peer Validation Uses Attacker-Supplied q
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:58
|
| libssl3 |
CVE-2026-45446 |
低危 |
3.0.15-1~deb12u1 |
3.0.20-1~deb12u2 |
openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:57
|
| libssl3 |
CVE-2026-7383 |
低危 |
3.0.15-1~deb12u1 |
3.0.20-1~deb12u2 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:46
|
| libssl3 |
CVE-2026-9076 |
低危 |
3.0.15-1~deb12u1 |
3.0.20-1~deb12u2 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:45
|
| libstdc++6 |
CVE-2022-27943 |
低危 |
12.2.0-14 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
|
| libstdc++6 |
CVE-2023-4039 |
低危 |
12.2.0-14 |
12.2.0-14+deb12u1 |
gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-09-13 09:15 修改: 2025-02-13 17:17
|
| libc6 |
CVE-2019-1010024 |
低危 |
2.36-9+deb12u10 |
|
glibc: ASLR bypass using cache of thread stack and heap
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libk5crypto3 |
CVE-2018-5709 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
|
| libk5crypto3 |
CVE-2024-26458 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
|
| libk5crypto3 |
CVE-2024-26461 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
|
| libk5crypto3 |
CVE-2026-11850 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-06-11 10:16 修改: 2026-06-12 15:16
|
| libsystemd0 |
CVE-2013-4392 |
低危 |
252.36-1~deb12u1 |
|
systemd: TOCTOU race condition when updating file permissions and SELinux security contexts
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
|
| libsystemd0 |
CVE-2023-31437 |
低危 |
252.36-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify a seale ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
|
| libsystemd0 |
CVE-2023-31438 |
低危 |
252.36-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can truncate a sea ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
|
| libsystemd0 |
CVE-2023-31439 |
低危 |
252.36-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify the con ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
|
| libsystemd0 |
CVE-2026-40228 |
低危 |
252.36-1~deb12u1 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
|
| libtasn1-6 |
CVE-2025-13151 |
低危 |
4.19.0-2+deb12u1 |
|
libtasn1: libtasn1: Denial of Service via stack-based buffer overflow in asn1_expend_octet_string
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13151
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-01-07 22:15 修改: 2026-02-02 19:27
|
| libc6 |
CVE-2019-1010025 |
低危 |
2.36-9+deb12u10 |
|
glibc: information disclosure of heap addresses of pthread_created thread
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc6 |
CVE-2019-9192 |
低危 |
2.36-9+deb12u10 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
|
| libtinfo6 |
CVE-2025-6141 |
低危 |
6.4-4 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
|
| libc6 |
CVE-2025-15281 |
低危 |
2.36-9+deb12u10 |
2.36-9+deb12u14 |
glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-01-20 14:16 修改: 2026-02-05 17:43
|
| libc6 |
CVE-2026-0861 |
低危 |
2.36-9+deb12u10 |
2.36-9+deb12u14 |
glibc: Integer overflow in memalign leads to heap corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-01-14 21:15 修改: 2026-02-03 18:26
|
| libc6 |
CVE-2026-4438 |
低危 |
2.36-9+deb12u10 |
2.36-9+deb12u14 |
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:40
|
| libkrb5-3 |
CVE-2018-5709 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
|
| libkrb5-3 |
CVE-2024-26458 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
|
| libudev1 |
CVE-2013-4392 |
低危 |
252.36-1~deb12u1 |
|
systemd: TOCTOU race condition when updating file permissions and SELinux security contexts
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
|
| libudev1 |
CVE-2023-31437 |
低危 |
252.36-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify a seale ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
|
| libudev1 |
CVE-2023-31438 |
低危 |
252.36-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can truncate a sea ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
|
| libudev1 |
CVE-2023-31439 |
低危 |
252.36-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify the con ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
|
| libudev1 |
CVE-2026-40228 |
低危 |
252.36-1~deb12u1 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
|
| libkrb5-3 |
CVE-2024-26461 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
|
| libkrb5-3 |
CVE-2026-11850 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-06-11 10:16 修改: 2026-06-12 15:16
|
| libuuid1 |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| libuuid1 |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| bash |
TEMP-0841856-B18BAF |
低危 |
5.2.15-2+b7 |
|
[Privilege escalation possible to other user than root]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| login |
CVE-2007-5686 |
低危 |
1:4.13+dfsg1-1+b1 |
|
initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
|
| login |
CVE-2023-29383 |
低危 |
1:4.13+dfsg1-1+b1 |
1:4.13+dfsg1-1+deb12u1 |
shadow: Improper input validation in shadow-utils package utility chfn
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-04-14 22:15 修改: 2025-11-03 20:16
|
| login |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-1+b1 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
|
| login |
TEMP-0628843-DBAD28 |
低危 |
1:4.13+dfsg1-1+b1 |
|
[more related to CVE-2005-4890]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| bsdutils |
CVE-2022-0563 |
低危 |
1:2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| libgcc-s1 |
CVE-2022-27943 |
低危 |
12.2.0-14 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
|
| mount |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| mount |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| libgcc-s1 |
CVE-2023-4039 |
低危 |
12.2.0-14 |
12.2.0-14+deb12u1 |
gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-09-13 09:15 修改: 2025-02-13 17:17
|
| bsdutils |
CVE-2025-14104 |
低危 |
1:2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| ncurses-base |
CVE-2025-6141 |
低危 |
6.4-4 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
|
| libkrb5support0 |
CVE-2018-5709 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
|
| libkrb5support0 |
CVE-2024-26458 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
|
| ncurses-bin |
CVE-2025-6141 |
低危 |
6.4-4 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
|
| libkrb5support0 |
CVE-2024-26461 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
|
| libkrb5support0 |
CVE-2026-11850 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-06-11 10:16 修改: 2026-06-12 15:16
|
| libgcrypt20 |
CVE-2018-6829 |
低危 |
1.10.1-3 |
|
libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2018-02-07 23:29 修改: 2024-11-21 04:11
|
| libgcrypt20 |
CVE-2024-2236 |
低危 |
1.10.1-3 |
|
libgcrypt: vulnerable to Marvin Attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2024-03-06 22:15 修改: 2026-04-15 00:35
|
| gpgv |
CVE-2022-3219 |
低危 |
2.2.40-1.1 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
|
| libmount1 |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| libmount1 |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| openssh-client |
CVE-2007-2243 |
低危 |
1:9.2p1-2+deb12u5 |
|
OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabl ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2243
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2007-04-25 16:19 修改: 2026-04-23 00:35
|
| openssh-client |
CVE-2007-2768 |
低危 |
1:9.2p1-2+deb12u5 |
|
OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2768
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2007-05-21 20:30 修改: 2026-04-23 00:35
|
| openssh-client |
CVE-2008-3234 |
低危 |
1:9.2p1-2+deb12u5 |
|
sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapsh ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3234
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2008-07-18 16:41 修改: 2026-04-23 00:35
|
| openssh-client |
CVE-2016-20012 |
低危 |
1:9.2p1-2+deb12u5 |
|
openssh: Public key information leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20012
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2021-09-15 20:15 修改: 2026-05-29 16:16
|
| openssh-client |
CVE-2018-15919 |
低危 |
1:9.2p1-2+deb12u5 |
|
openssh: User enumeration via malformed packets in authentication requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15919
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2018-08-28 08:29 修改: 2025-12-18 12:15
|
| openssh-client |
CVE-2019-6110 |
低危 |
1:9.2p1-2+deb12u5 |
|
openssh: Acceptance and display of arbitrary stderr allows for spoofing of scp client output
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6110
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2019-01-31 18:29 修改: 2025-12-18 15:15
|
| openssh-client |
CVE-2020-14145 |
低危 |
1:9.2p1-2+deb12u5 |
|
openssh: Observable discrepancy leading to an information leak in the algorithm negotiation
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14145
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2020-06-29 18:15 修改: 2025-12-18 15:15
|
| openssh-client |
CVE-2020-15778 |
低危 |
1:9.2p1-2+deb12u5 |
|
openssh: scp allows command injection when using backtick characters in the destination argument
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15778
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2020-07-24 14:15 修改: 2025-07-28 18:12
|
| openssh-client |
CVE-2025-32728 |
低危 |
1:9.2p1-2+deb12u5 |
1:9.2p1-2+deb12u6 |
openssh: OpenSSH SSHD Agent Forwarding and X11 Forwarding
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32728
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2025-04-10 02:15 修改: 2025-05-22 16:51
|
| openssh-client |
CVE-2026-35388 |
低危 |
1:9.2p1-2+deb12u5 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Low integrity impact from unconfirmed proxy-mode multiplexing sessions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35388
镜像层: sha256:00e47717e3f033def2f1c1bf4b3cc93f1553e3faeaccedf6159acb1fd831f191
发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:12
|
| libodbc1 |
CVE-2024-1013 |
低危 |
2.3.11-2+deb12u1 |
|
unixODBC: out of bounds stack write due to pointer-to-integer types conversion
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1013
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2024-03-18 11:15 修改: 2025-03-26 05:15
|
| passwd |
CVE-2007-5686 |
低危 |
1:4.13+dfsg1-1+b1 |
|
initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
|
| passwd |
CVE-2023-29383 |
低危 |
1:4.13+dfsg1-1+b1 |
1:4.13+dfsg1-1+deb12u1 |
shadow: Improper input validation in shadow-utils package utility chfn
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-04-14 22:15 修改: 2025-11-03 20:16
|
| passwd |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-1+b1 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
|
| passwd |
TEMP-0628843-DBAD28 |
低危 |
1:4.13+dfsg1-1+b1 |
|
[more related to CVE-2005-4890]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libodbc2 |
CVE-2024-1013 |
低危 |
2.3.11-2+deb12u1 |
|
unixODBC: out of bounds stack write due to pointer-to-integer types conversion
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1013
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2024-03-18 11:15 修改: 2025-03-26 05:15
|
| libodbccr2 |
CVE-2024-1013 |
低危 |
2.3.11-2+deb12u1 |
|
unixODBC: out of bounds stack write due to pointer-to-integer types conversion
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1013
镜像层: sha256:0ebab63980d613f8f66922e7e477ca276ef71125eb91529428223f8a087fd7d0
发布日期: 2024-03-18 11:15 修改: 2025-03-26 05:15
|
| libapt-pkg6.0 |
CVE-2011-3374 |
低危 |
2.6.1 |
|
It was found that apt-key in apt, all versions, do not correctly valid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
|
| libc-bin |
CVE-2010-4756 |
低危 |
2.36-9+deb12u10 |
|
glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions
漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
|
| libc-bin |
CVE-2018-20796 |
低危 |
2.36-9+deb12u10 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
|
| libc-bin |
CVE-2019-1010022 |
低危 |
2.36-9+deb12u10 |
|
glibc: stack guard protection bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc-bin |
CVE-2019-1010023 |
低危 |
2.36-9+deb12u10 |
|
glibc: running ldd on malicious ELF leads to code execution because of wrong size computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc-bin |
CVE-2019-1010024 |
低危 |
2.36-9+deb12u10 |
|
glibc: ASLR bypass using cache of thread stack and heap
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc-bin |
CVE-2019-1010025 |
低危 |
2.36-9+deb12u10 |
|
glibc: information disclosure of heap addresses of pthread_created thread
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc-bin |
CVE-2019-9192 |
低危 |
2.36-9+deb12u10 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
|
| libc-bin |
CVE-2025-15281 |
低危 |
2.36-9+deb12u10 |
2.36-9+deb12u14 |
glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-01-20 14:16 修改: 2026-02-05 17:43
|
| libc-bin |
CVE-2026-0861 |
低危 |
2.36-9+deb12u10 |
2.36-9+deb12u14 |
glibc: Integer overflow in memalign leads to heap corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-01-14 21:15 修改: 2026-02-03 18:26
|
| libc-bin |
CVE-2026-4438 |
低危 |
2.36-9+deb12u10 |
2.36-9+deb12u14 |
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:40
|
| perl-base |
CVE-2011-4116 |
低危 |
5.36.0-7+deb12u1 |
|
perl: File:: Temp insecure temporary file handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
|
| perl-base |
CVE-2023-31486 |
低危 |
5.36.0-7+deb12u1 |
|
http-tiny: perl: insecure TLS cert default
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2023-04-29 00:15 修改: 2025-01-30 20:15
|
| coreutils |
CVE-2016-2781 |
低危 |
9.1-1 |
|
coreutils: Non-privileged session can escape to the parent session in chroot
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2017-02-07 15:59 修改: 2026-05-13 00:24
|
| sysvinit-utils |
TEMP-0517018-A83CE6 |
低危 |
3.06-4 |
|
[sysvinit: no-root option in expert installer exposes locally exploitable security flaw]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| coreutils |
CVE-2017-18018 |
低危 |
9.1-1 |
|
coreutils: race condition vulnerability in chown and chgrp
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2018-01-04 04:29 修改: 2025-06-09 16:15
|
| tar |
CVE-2005-2541 |
低危 |
1.34+dfsg-1.2+deb12u1 |
|
tar: does not properly warn the user when extracting setuid or setgid files
漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2005-08-10 04:00 修改: 2026-04-16 00:27
|
| tar |
TEMP-0290435-0B57B5 |
低危 |
1.34+dfsg-1.2+deb12u1 |
|
[tar's rmt command may have undesired side effects]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libblkid1 |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| libblkid1 |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| util-linux |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| util-linux |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| libgnutls30 |
CVE-2011-3389 |
低危 |
3.7.9-2+deb12u4 |
|
HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2011-09-06 19:55 修改: 2026-04-29 01:13
|
| libgnutls30 |
CVE-2025-9820 |
低危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u6 |
gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9820
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-01-26 20:16 修改: 2026-05-12 13:17
|
| util-linux-extra |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| util-linux-extra |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| libgnutls30 |
CVE-2026-5419 |
低危 |
3.7.9-2+deb12u4 |
3.7.9-2+deb12u7 |
guntls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5419
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2026-06-01 21:16 修改: 2026-06-02 17:16
|
| libsmartcols1 |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| mount |
CVE-2026-53613 |
未知 |
2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| mount |
CVE-2026-53615 |
未知 |
2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libuuid1 |
CVE-2026-53615 |
未知 |
2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libblkid1 |
CVE-2026-53615 |
未知 |
2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| bsdutils |
CVE-2026-53613 |
未知 |
1:2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| bsdutils |
CVE-2026-53615 |
未知 |
1:2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| util-linux |
CVE-2026-53613 |
未知 |
2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| util-linux |
CVE-2026-53615 |
未知 |
2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libmount1 |
CVE-2026-53613 |
未知 |
2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libsmartcols1 |
CVE-2026-53613 |
未知 |
2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libsmartcols1 |
CVE-2026-53615 |
未知 |
2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libmount1 |
CVE-2026-53615 |
未知 |
2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| util-linux-extra |
CVE-2026-53613 |
未知 |
2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| util-linux-extra |
CVE-2026-53615 |
未知 |
2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libblkid1 |
CVE-2026-53613 |
未知 |
2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libuuid1 |
CVE-2026-53613 |
未知 |
2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:f7f2b929d8a55112a2db1bc16fb8731045c9572b84d6dfbbdbd5dc6dd2bd9fe4
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|