gcr.io/zenika-hub/alpine-chrome:123 linux/amd64

gcr.io/zenika-hub/alpine-chrome:123 - Trivy安全扫描结果扫描时间: 2024-10-29 00:59

全部漏洞信息

低危漏洞:3

中危漏洞:25

高危漏洞:3

严重漏洞:2

系统OS: alpine 3.19.1 扫描引擎: Trivy 扫描时间: 2024-10-29 00:59

gcr.io/zenika-hub/alpine-chrome:123 (alpine 3.19.1) (alpine)

低危漏洞:3

中危漏洞:24

高危漏洞:3

严重漏洞:2

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
libexpat	CVE-2024-45491	严重	2.6.2-r0	2.6.3-r0	libexpat: Integer Overflow or Wraparound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45491 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
libexpat	CVE-2024-45492	严重	2.6.2-r0	2.6.3-r0	libexpat: integer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45492 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
cups-libs	CVE-2024-47175	高危	2.4.7-r0	2.4.9-r1	cups: libppd: remote command injection via attacker controlled data in PPD file 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47175 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-09-26 22:15 修改: 2024-09-30 12:46
gdk-pixbuf	CVE-2022-48622	高危	2.42.10-r6	2.42.12-r0	gnome: heap memory corruption on gdk-pixbuf 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48622 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-01-26 09:15 修改: 2024-08-26 20:35
libexpat	CVE-2024-45490	高危	2.6.2-r0	2.6.3-r0	libexpat: Negative Length Parsing Vulnerability in libexpat 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45490 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-08-30 03:15 修改: 2024-10-18 12:24
busybox-binsh	CVE-2023-42364	中危	1.36.1-r15	1.36.1-r19	busybox: use-after-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42364 镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820 发布日期: 2023-11-27 23:15 修改: 2024-10-11 21:36
busybox-binsh	CVE-2023-42365	中危	1.36.1-r15	1.36.1-r19	busybox: use-after-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42365 镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820 发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
busybox-binsh	CVE-2023-42366	中危	1.36.1-r15	1.36.1-r16	busybox: A heap-buffer-overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42366 镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820 发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
busybox	CVE-2023-42363	中危	1.36.1-r15	1.36.1-r17	busybox: use-after-free in awk 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42363 镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820 发布日期: 2023-11-27 22:15 修改: 2023-11-30 05:06
cups-libs	CVE-2024-35235	中危	2.4.7-r0	2.4.9-r0	cups: Cupsd Listen arbitrary chmod 0140777 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35235 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-06-11 15:16 修改: 2024-06-14 03:15
busybox	CVE-2023-42364	中危	1.36.1-r15	1.36.1-r19	busybox: use-after-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42364 镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820 发布日期: 2023-11-27 23:15 修改: 2024-10-11 21:36
libcrypto3	CVE-2024-4603	中危	3.1.4-r6	3.1.5-r0	openssl: Excessive time spent checking DSA keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4603 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-05-16 16:15 修改: 2024-10-14 15:15
libcrypto3	CVE-2024-4741	中危	3.1.4-r6	3.1.6-r0	openssl: Use After Free with SSL_free_buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcrypto3	CVE-2024-5535	中危	3.1.4-r6	3.1.6-r0	openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
libcrypto3	CVE-2024-6119	中危	3.1.4-r6	3.1.7-r0	openssl: Possible denial of service in X.509 name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
busybox	CVE-2023-42365	中危	1.36.1-r15	1.36.1-r19	busybox: use-after-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42365 镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820 发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
busybox	CVE-2023-42366	中危	1.36.1-r15	1.36.1-r16	busybox: A heap-buffer-overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42366 镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820 发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
busybox-binsh	CVE-2023-42363	中危	1.36.1-r15	1.36.1-r17	busybox: use-after-free in awk 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42363 镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820 发布日期: 2023-11-27 22:15 修改: 2023-11-30 05:06
libssl3	CVE-2024-4603	中危	3.1.4-r6	3.1.5-r0	openssl: Excessive time spent checking DSA keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4603 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-05-16 16:15 修改: 2024-10-14 15:15
libssl3	CVE-2024-4741	中危	3.1.4-r6	3.1.6-r0	openssl: Use After Free with SSL_free_buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libssl3	CVE-2024-5535	中危	3.1.4-r6	3.1.6-r0	openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
libssl3	CVE-2024-6119	中危	3.1.4-r6	3.1.7-r0	openssl: Possible denial of service in X.509 name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
libxml2	CVE-2024-34459	中危	2.11.7-r0	2.11.8-r0	libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34459 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-05-14 15:39 修改: 2024-08-22 18:35
mbedtls	CVE-2024-45157	中危	2.28.8-r0	2.28.9-r0	An issue was discovered in Mbed TLS before 2.28.9 and 3.x before 3.6.1 ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45157 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-09-05 19:15 修改: 2024-09-12 16:29
orc	CVE-2024-40897	中危	0.4.34-r0	0.4.39-r0	orc: Stack-based buffer overflow vulnerability in ORC 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-40897 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-07-26 06:15 修改: 2024-08-27 13:52
ssl_client	CVE-2023-42363	中危	1.36.1-r15	1.36.1-r17	busybox: use-after-free in awk 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42363 镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820 发布日期: 2023-11-27 22:15 修改: 2023-11-30 05:06
ssl_client	CVE-2023-42364	中危	1.36.1-r15	1.36.1-r19	busybox: use-after-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42364 镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820 发布日期: 2023-11-27 23:15 修改: 2024-10-11 21:36
ssl_client	CVE-2023-42365	中危	1.36.1-r15	1.36.1-r19	busybox: use-after-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42365 镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820 发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
ssl_client	CVE-2023-42366	中危	1.36.1-r15	1.36.1-r16	busybox: A heap-buffer-overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42366 镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820 发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
glib	CVE-2024-34397	低危	2.78.4-r0	2.78.5-r0	glib2: Signal subscription vulnerabilities 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34397 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-05-07 18:15 修改: 2024-06-10 18:15
libssl3	CVE-2024-9143	低危	3.1.4-r6	3.1.7-r1	openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-10-16 17:15 修改: 2024-10-18 12:53
libcrypto3	CVE-2024-9143	低危	3.1.4-r6	3.1.7-r1	openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-10-16 17:15 修改: 2024-10-18 12:53

usr/lib/librav1e.so.0.6.6 (rustbinary)

低危漏洞:0

中危漏洞:1

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
rustix	CVE-2024-43806	中危	0.37.19	0.35.15, 0.36.16, 0.37.25, 0.38.19	Rustix is a set of safe Rust bindings to POSIX-ish APIs. When using `r ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43806 镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1 发布日期: 2024-08-26 19:15 修改: 2024-08-27 13:02

软件包

漏洞

安全状态

安装版本

修复版本

漏洞信息

rustix

CVE-2024-43806

中危

0.37.19

0.35.15, 0.36.16, 0.37.25, 0.38.19

Rustix is a set of safe Rust bindings to POSIX-ish APIs. When using `r ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43806

镜像层: sha256:243630d849da43684d50842eef07e6ceca6c18eb067264194aceb197bf15b8b1

发布日期: 2024-08-26 19:15 修改: 2024-08-27 13:02