| bsdutils |
CVE-2026-27456 |
中危 |
1:2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| gzip |
CVE-2026-41991 |
中危 |
1.12-1ubuntu3.1 |
1.12-1ubuntu3.2 |
gzip: gzip: Arbitrary file overwrite via insecure temporary file handling in gzexe utility
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41991
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02
|
| gzip |
CVE-2026-41992 |
中危 |
1.12-1ubuntu3.1 |
1.12-1ubuntu3.2 |
GNU gzip contains a global buffer overflow vulnerability in the LZH de ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41992
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02
|
| libblkid1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libc-bin |
CVE-2026-4046 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55
|
| libc-bin |
CVE-2026-4437 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
|
| libc-bin |
CVE-2026-4438 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
|
| libc-bin |
CVE-2026-5435 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59
|
| libc-bin |
CVE-2026-6238 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17
|
| libc6 |
CVE-2026-4046 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55
|
| libc6 |
CVE-2026-4437 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
|
| libc6 |
CVE-2026-4438 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
|
| libc6 |
CVE-2026-5435 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59
|
| libc6 |
CVE-2026-6238 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17
|
| libcurl4t64 |
CVE-2026-11856 |
中危 |
8.5.0-2ubuntu10.10 |
|
Successfully using libcurl to do a transfer to a specific HTTP origin ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11856
镜像层: sha256:0981ef3921c5b51575517afc29fe238259c49f07f47e135a8441cd7ae6343e58
发布日期: 2026-07-03 07:16 修改: 2026-07-06 19:16
|
| libexpat1 |
CVE-2025-66382 |
中危 |
2.6.1-2ubuntu0.4 |
|
libexpat: libexpat: Denial of service via crafted file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382
镜像层: sha256:0981ef3921c5b51575517afc29fe238259c49f07f47e135a8441cd7ae6343e58
发布日期: 2025-11-28 07:15 修改: 2026-06-17 09:56
|
| libmount1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libp11-kit0 |
CVE-2026-13757 |
中危 |
0.25.3-4ubuntu2.1 |
|
p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-06-29 19:16 修改: 2026-07-01 15:16
|
| libsmartcols1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libuuid1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| mount |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| perl-base |
CVE-2026-42496 |
中危 |
5.38.2-3.2ubuntu0.2 |
5.38.2-3.2ubuntu0.3 |
perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-05-26 02:16 修改: 2026-06-30 03:19
|
| perl-base |
CVE-2026-8376 |
中危 |
5.38.2-3.2ubuntu0.2 |
5.38.2-3.2ubuntu0.3 |
perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03
|
| python3-pip |
CVE-2024-35195 |
中危 |
24.0+dfsg-1ubuntu1.3 |
|
requests: subsequent requests to the same host ignore cert verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35195
镜像层: sha256:0981ef3921c5b51575517afc29fe238259c49f07f47e135a8441cd7ae6343e58
发布日期: 2024-05-20 21:15 修改: 2026-06-17 07:34
|
| python3-pip |
CVE-2025-66418 |
中危 |
24.0+dfsg-1ubuntu1.3 |
|
urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66418
镜像层: sha256:0981ef3921c5b51575517afc29fe238259c49f07f47e135a8441cd7ae6343e58
发布日期: 2025-12-05 16:15 修改: 2026-06-17 09:56
|
| python3-pip |
CVE-2025-66471 |
中危 |
24.0+dfsg-1ubuntu1.3 |
|
urllib3: urllib3 Streaming API improperly handles highly compressed data
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66471
镜像层: sha256:0981ef3921c5b51575517afc29fe238259c49f07f47e135a8441cd7ae6343e58
发布日期: 2025-12-05 17:16 修改: 2026-06-17 09:56
|
| python3-pip |
CVE-2026-21441 |
中危 |
24.0+dfsg-1ubuntu1.3 |
|
urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-21441
镜像层: sha256:0981ef3921c5b51575517afc29fe238259c49f07f47e135a8441cd7ae6343e58
发布日期: 2026-01-07 22:15 修改: 2026-07-03 13:16
|
| python3-wheel |
CVE-2026-24049 |
中危 |
0.42.0-2 |
|
wheel: wheel: Privilege Escalation or Arbitrary Code Execution via malicious wheel file unpacking
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24049
镜像层: sha256:0981ef3921c5b51575517afc29fe238259c49f07f47e135a8441cd7ae6343e58
发布日期: 2026-01-22 05:16 修改: 2026-07-01 13:16
|
| tar |
CVE-2025-45582 |
中危 |
1.35+dfsg-3build1 |
1.35+dfsg-3ubuntu0.2 |
tar: Tar path traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-45582
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2025-07-11 17:15 修改: 2026-06-17 09:25
|
| tar |
CVE-2026-5704 |
中危 |
1.35+dfsg-3build1 |
1.35+dfsg-3ubuntu0.1 |
tar: tar: Hidden file injection via crafted archives
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-04-06 16:16 修改: 2026-06-17 10:59
|
| util-linux |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| ncurses-bin |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| passwd |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-4ubuntu3.2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12
|
| libncursesw6 |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libcurl4t64 |
CVE-2026-10536 |
低危 |
8.5.0-2ubuntu10.10 |
|
A use-after-free vulnerability exists in libcurl when an application c ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536
镜像层: sha256:0981ef3921c5b51575517afc29fe238259c49f07f47e135a8441cd7ae6343e58
发布日期: 2026-07-03 07:16 修改: 2026-07-06 19:16
|
| libgcrypt20 |
CVE-2024-2236 |
低危 |
1.10.3-2ubuntu0.1 |
|
libgcrypt: vulnerable to Marvin Attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2024-03-06 22:15 修改: 2026-06-17 07:24
|
| libsystemd0 |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libtinfo6 |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libudev1 |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| python3-pip |
CVE-2026-1703 |
低危 |
24.0+dfsg-1ubuntu1.3 |
|
pip: pip: Information disclosure via path traversal when installing crafted wheel archives
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1703
镜像层: sha256:0981ef3921c5b51575517afc29fe238259c49f07f47e135a8441cd7ae6343e58
发布日期: 2026-02-02 15:16 修改: 2026-06-17 10:16
|
| libicu74 |
CVE-2025-5222 |
低危 |
74.2-1ubuntu3.1 |
|
icu: Stack buffer overflow in the SRBRoot::addTag function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5222
镜像层: sha256:01dc0bb0e00ce8214d88470332b535e5d920d5acf6a22d8c0d984cf5526b0875
发布日期: 2025-05-27 21:15 修改: 2026-06-30 05:17
|
| login |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-4ubuntu3.2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12
|
| libcurl4t64 |
CVE-2026-12064 |
低危 |
8.5.0-2ubuntu10.10 |
|
curl: curl: SSH host verification bypass when using schemeless URLs with SFTP/SCP
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12064
镜像层: sha256:0981ef3921c5b51575517afc29fe238259c49f07f47e135a8441cd7ae6343e58
发布日期: 2026-07-03 07:16 修改: 2026-07-06 19:16
|
| ncurses-base |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| zlib1g |
CVE-2026-27171 |
低危 |
1:1.3.dfsg-3.1ubuntu2.1 |
|
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:2c042ab36ee22da5e09730c3dce27e9d84ff1cc8af8e5a8ed2275c05f0133445
发布日期: 2026-02-18 04:16 修改: 2026-06-17 10:26
|