ghcr.io/all-hands-ai/openhands:0.18 linux/amd64

ghcr.io/all-hands-ai/openhands:0.18 - Trivy安全扫描结果扫描时间: 2025-01-06 18:02

全部漏洞信息

低危漏洞:191

中危漏洞:50

高危漏洞:22

严重漏洞:7

系统OS: debian 12.5 扫描引擎: Trivy 扫描时间: 2025-01-06 18:02

ghcr.io/all-hands-ai/openhands:0.18 (debian 12.5) (debian)

低危漏洞:191

中危漏洞:49

高危漏洞:20

严重漏洞:7

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
libexpat1	CVE-2024-45491	严重	2.5.0-1	2.5.0-1+deb12u1	libexpat: Integer Overflow or Wraparound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45491 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
libexpat1	CVE-2024-45492	严重	2.5.0-1	2.5.0-1+deb12u1	libexpat: integer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45492 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
libgssapi-krb5-2	CVE-2024-37371	严重	1.20.1-2+deb12u1	1.20.1-2+deb12u2	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libk5crypto3	CVE-2024-37371	严重	1.20.1-2+deb12u1	1.20.1-2+deb12u2	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libkrb5-3	CVE-2024-37371	严重	1.20.1-2+deb12u1	1.20.1-2+deb12u2	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libkrb5support0	CVE-2024-37371	严重	1.20.1-2+deb12u1	1.20.1-2+deb12u2	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
zlib1g	CVE-2023-45853	严重	1:1.2.13.dfsg-1		zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45853 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2023-10-14 02:15 修改: 2024-12-20 17:41
libgssapi-krb5-2	CVE-2024-37370	高危	1.20.1-2+deb12u1	1.20.1-2+deb12u2	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libharfbuzz0b	CVE-2023-25193	高危	6.0.0+dfsg-3		harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25193 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-02-04 20:15 修改: 2023-11-07 04:08
libexpat1	CVE-2024-45490	高危	2.5.0-1	2.5.0-1+deb12u1	libexpat: Negative Length Parsing Vulnerability in libexpat 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45490 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-08-30 03:15 修改: 2024-10-18 12:24
libk5crypto3	CVE-2024-26462	高危	1.20.1-2+deb12u1		krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libk5crypto3	CVE-2024-37370	高危	1.20.1-2+deb12u1	1.20.1-2+deb12u2	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libglib2.0-0	CVE-2024-52533	高危	2.74.6-2+deb12u4		glib: buffer overflow in set_connect_msg() 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52533 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-11-11 23:15 修改: 2024-12-06 14:15
libkrb5-3	CVE-2024-26462	高危	1.20.1-2+deb12u1		krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5-3	CVE-2024-37370	高危	1.20.1-2+deb12u1	1.20.1-2+deb12u2	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libexpat1	CVE-2023-52425	高危	2.5.0-1		expat: parsing large tokens can trigger a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52425 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-02-04 20:15 修改: 2024-08-26 20:35
libkrb5support0	CVE-2024-26462	高危	1.20.1-2+deb12u1		krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5support0	CVE-2024-37370	高危	1.20.1-2+deb12u1	1.20.1-2+deb12u2	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libldap-2.5-0	CVE-2023-2953	高危	2.5.13+dfsg-5		openldap: null pointer dereference in ber_memalloc_x function 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-05-30 22:15 修改: 2023-08-02 16:46
libldap-common	CVE-2023-2953	高危	2.5.13+dfsg-5		openldap: null pointer dereference in ber_memalloc_x function 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-05-30 22:15 修改: 2023-08-02 16:46
libsqlite3-0	CVE-2023-7104	高危	3.40.1-2	3.40.1-2+deb12u1	sqlite: heap-buffer-overflow at sessionfuzz 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7104 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2023-12-29 10:15 修改: 2024-05-17 02:34
libxml2	CVE-2024-25062	高危	2.9.14+dfsg-1.3~deb12u1		libxml2: use-after-free in XMLReader 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25062 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-02-04 16:15 修改: 2024-02-13 00:40
perl-base	CVE-2023-31484	高危	5.36.0-7+deb12u1		perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
sudo	CVE-2023-42465	高危	1.9.13p3-1+deb12u1		sudo: Targeted Corruption of Register and Stack Variables 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42465 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-12-22 16:15 修改: 2024-02-18 03:15
xserver-common	CVE-2023-5574	高危	2:21.1.7-3+deb12u8		xorg-x11-server: Use-after-free bug in DamageDestroy 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5574 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-10-25 20:15 修改: 2024-09-16 17:16
xvfb	CVE-2023-5574	高危	2:21.1.7-3+deb12u8		xorg-x11-server: Use-after-free bug in DamageDestroy 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5574 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-10-25 20:15 修改: 2024-09-16 17:16
libgssapi-krb5-2	CVE-2024-26462	高危	1.20.1-2+deb12u1		krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libavahi-client3	CVE-2023-38469	中危	0.8-10		avahi: Reachable assertion in avahi_dns_packet_append_record 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38469 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
libavahi-client3	CVE-2023-38470	中危	0.8-10		avahi: Reachable assertion in avahi_escape_label 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38470 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
libexpat1	CVE-2024-50602	中危	2.5.0-1		libexpat: expat: DoS via XML_ResumeParser 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50602 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-10-27 05:15 修改: 2024-10-30 18:35
libgcrypt20	CVE-2024-2236	中危	1.10.1-3		libgcrypt: vulnerable to Marvin Attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2024-03-06 22:15 修改: 2024-11-12 18:15
libavahi-client3	CVE-2023-38471	中危	0.8-10		avahi: Reachable assertion in dbus_set_host_name 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38471 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
libgnutls30	CVE-2024-28834	中危	3.7.9-2+deb12u2	3.7.9-2+deb12u3	gnutls: vulnerable to Minerva side-channel information leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28834 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2024-03-21 14:15 修改: 2024-11-21 21:15
libgnutls30	CVE-2024-28835	中危	3.7.9-2+deb12u2	3.7.9-2+deb12u3	gnutls: potential crash during chain building/verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28835 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2024-03-21 06:15 修改: 2024-11-22 12:15
libavahi-client3	CVE-2023-38472	中危	0.8-10		avahi: Reachable assertion in avahi_rdata_parse 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38472 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
libavahi-client3	CVE-2023-38473	中危	0.8-10		avahi: Reachable assertion in avahi_alternative_host_name 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38473 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-11-02 16:15 修改: 2023-11-09 17:46
libavahi-client3	CVE-2024-52615	中危	0.8-10		avahi: Avahi Wide-Area DNS Uses Constant Source Port 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-11-21 21:15 修改: 2024-11-21 21:15
libavahi-client3	CVE-2024-52616	中危	0.8-10		avahi: Avahi Wide-Area DNS Predictable Transaction IDs 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-11-21 21:15 修改: 2024-11-21 21:15
libavahi-common-data	CVE-2023-38469	中危	0.8-10		avahi: Reachable assertion in avahi_dns_packet_append_record 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38469 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
libavahi-common-data	CVE-2023-38470	中危	0.8-10		avahi: Reachable assertion in avahi_escape_label 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38470 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
libavahi-common-data	CVE-2023-38471	中危	0.8-10		avahi: Reachable assertion in dbus_set_host_name 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38471 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
libavahi-common-data	CVE-2023-38472	中危	0.8-10		avahi: Reachable assertion in avahi_rdata_parse 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38472 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
libavahi-common-data	CVE-2023-38473	中危	0.8-10		avahi: Reachable assertion in avahi_alternative_host_name 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38473 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-11-02 16:15 修改: 2023-11-09 17:46
libavahi-common-data	CVE-2024-52615	中危	0.8-10		avahi: Avahi Wide-Area DNS Uses Constant Source Port 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-11-21 21:15 修改: 2024-11-21 21:15
libavahi-common-data	CVE-2024-52616	中危	0.8-10		avahi: Avahi Wide-Area DNS Predictable Transaction IDs 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-11-21 21:15 修改: 2024-11-21 21:15
libavahi-common3	CVE-2023-38469	中危	0.8-10		avahi: Reachable assertion in avahi_dns_packet_append_record 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38469 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
libavahi-common3	CVE-2023-38470	中危	0.8-10		avahi: Reachable assertion in avahi_escape_label 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38470 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
libavahi-common3	CVE-2023-38471	中危	0.8-10		avahi: Reachable assertion in dbus_set_host_name 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38471 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
libavahi-common3	CVE-2023-38472	中危	0.8-10		avahi: Reachable assertion in avahi_rdata_parse 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38472 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58
libncursesw6	CVE-2023-50495	中危	6.4-4		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libnss3	CVE-2023-5388	中危	2:3.87.1-1+deb12u1		nss: timing attack against RSA decryption 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5388 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-19 12:15 修改: 2024-11-14 22:35
libnss3	CVE-2023-6135	中危	2:3.87.1-1+deb12u1		nss: vulnerable to Minerva side-channel information leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6135 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-12-19 14:15 修改: 2024-01-07 11:15
libnss3	CVE-2024-7531	中危	2:3.87.1-1+deb12u1		mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-08-06 13:15 修改: 2024-10-30 21:35
libpam-modules	CVE-2024-10041	中危	1.5.2-6+deb12u1		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules	CVE-2024-22365	中危	1.5.2-6+deb12u1		pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libpam-modules-bin	CVE-2024-10041	中危	1.5.2-6+deb12u1		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules-bin	CVE-2024-22365	中危	1.5.2-6+deb12u1		pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libpam-runtime	CVE-2024-10041	中危	1.5.2-6+deb12u1		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-runtime	CVE-2024-22365	中危	1.5.2-6+deb12u1		pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libpam0g	CVE-2024-10041	中危	1.5.2-6+deb12u1		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam0g	CVE-2024-22365	中危	1.5.2-6+deb12u1		pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libavahi-common3	CVE-2023-38473	中危	0.8-10		avahi: Reachable assertion in avahi_alternative_host_name 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38473 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-11-02 16:15 修改: 2023-11-09 17:46
libtinfo6	CVE-2023-50495	中危	6.4-4		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libavahi-common3	CVE-2024-52615	中危	0.8-10		avahi: Avahi Wide-Area DNS Uses Constant Source Port 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-11-21 21:15 修改: 2024-11-21 21:15
libxml2	CVE-2023-39615	中危	2.9.14+dfsg-1.3~deb12u1		libxml2: crafted xml can cause global buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39615 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-08-29 17:15 修改: 2024-08-02 19:15
libxml2	CVE-2023-45322	中危	2.9.14+dfsg-1.3~deb12u1		libxml2: use-after-free in xmlUnlinkNode() in tree.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45322 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-10-06 22:15 修改: 2024-08-02 21:15
login	CVE-2023-4641	中危	1:4.13+dfsg1-1+b1		shadow-utils: possible password leak during passwd(1) change 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
ncurses-base	CVE-2023-50495	中危	6.4-4		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
ncurses-bin	CVE-2023-50495	中危	6.4-4		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
ncurses-term	CVE-2023-50495	中危	6.4-4		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
passwd	CVE-2023-4641	中危	1:4.13+dfsg1-1+b1		shadow-utils: possible password leak during passwd(1) change 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
libavahi-common3	CVE-2024-52616	中危	0.8-10		avahi: Avahi Wide-Area DNS Predictable Transaction IDs 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-11-21 21:15 修改: 2024-11-21 21:15
libcurl4	CVE-2024-11053	中危	7.88.1-10+deb12u8		curl: curl netrc password leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2024-12-11 08:15 修改: 2024-12-15 17:15
libcurl4	CVE-2024-9681	中危	7.88.1-10+deb12u8		curl: HSTS subdomain overwrites parent cache entry 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2024-11-06 08:15 修改: 2024-12-13 14:15
curl	CVE-2024-11053	中危	7.88.1-10+deb12u8		curl: curl netrc password leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2024-12-11 08:15 修改: 2024-12-15 17:15
curl	CVE-2024-9681	中危	7.88.1-10+deb12u8		curl: HSTS subdomain overwrites parent cache entry 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2024-11-06 08:15 修改: 2024-12-13 14:15
libgl1-mesa-dri	CVE-2023-45919	低危	22.3.6-1+deb12u1		Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 05:15 修改: 2024-08-02 21:15
libgl1-mesa-dri	CVE-2023-45922	低危	22.3.6-1+deb12u1		glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 05:15 修改: 2024-11-19 19:35
libgl1-mesa-dri	CVE-2023-45931	低危	22.3.6-1+deb12u1		Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 04:15 修改: 2024-09-04 15:35
libglapi-mesa	CVE-2023-45913	低危	22.3.6-1+deb12u1		Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 04:15 修改: 2024-11-07 12:35
libglapi-mesa	CVE-2023-45919	低危	22.3.6-1+deb12u1		Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 05:15 修改: 2024-08-02 21:15
libglapi-mesa	CVE-2023-45922	低危	22.3.6-1+deb12u1		glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 05:15 修改: 2024-11-19 19:35
libglapi-mesa	CVE-2023-45931	低危	22.3.6-1+deb12u1		Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 04:15 修改: 2024-09-04 15:35
gcc-12-base	CVE-2023-4039	低危	12.2.0-14		gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
libglib2.0-0	CVE-2012-0039	低危	2.74.6-2+deb12u4		glib2: hash table collisions CPU usage DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2012-0039 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2012-01-14 17:55 修改: 2024-08-06 18:15
libglvnd0	CVE-2023-45924	低危	1.6.0-1		libglxproto.c in OpenGL libglvnd bb06db5a was discovered to contain a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45924 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 05:15 修改: 2024-08-02 21:15
libglx-mesa0	CVE-2023-45913	低危	22.3.6-1+deb12u1		Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 04:15 修改: 2024-11-07 12:35
libglx-mesa0	CVE-2023-45919	低危	22.3.6-1+deb12u1		Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 05:15 修改: 2024-08-02 21:15
libglx-mesa0	CVE-2023-45922	低危	22.3.6-1+deb12u1		glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 05:15 修改: 2024-11-19 19:35
libglx-mesa0	CVE-2023-45931	低危	22.3.6-1+deb12u1		Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 04:15 修改: 2024-09-04 15:35
libglx0	CVE-2023-45924	低危	1.6.0-1		libglxproto.c in OpenGL libglvnd bb06db5a was discovered to contain a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45924 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 05:15 修改: 2024-08-02 21:15
gpgv	CVE-2022-3219	低危	2.2.40-1.1		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libapparmor1	CVE-2016-1585	低危	3.0.8-3		In all versions of AppArmor mount rules are accidentally widened when ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-1585 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2019-04-22 16:29 修改: 2023-11-07 02:29
libgnutls30	CVE-2011-3389	低危	3.7.9-2+deb12u2		HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST) 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2011-09-06 19:55 修改: 2022-11-29 15:56
libblkid1	CVE-2022-0563	低危	2.38.1-5+deb12u2		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libc-bin	CVE-2010-4756	低危	2.36-9+deb12u7		glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
libc-bin	CVE-2018-20796	低危	2.36-9+deb12u7		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
libgssapi-krb5-2	CVE-2018-5709	低危	1.20.1-2+deb12u1		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libgssapi-krb5-2	CVE-2024-26458	低危	1.20.1-2+deb12u1		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libgssapi-krb5-2	CVE-2024-26461	低危	1.20.1-2+deb12u1		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libc-bin	CVE-2019-1010022	低危	2.36-9+deb12u7		glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libip4tc2	CVE-2012-2663	低危	1.8.9-2		iptables: --syn flag bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2012-2663 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2014-02-15 14:57 修改: 2023-11-07 02:10
libc-bin	CVE-2019-1010023	低危	2.36-9+deb12u7		glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc-bin	CVE-2019-1010024	低危	2.36-9+deb12u7		glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc-bin	CVE-2019-1010025	低危	2.36-9+deb12u7		glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libk5crypto3	CVE-2018-5709	低危	1.20.1-2+deb12u1		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libk5crypto3	CVE-2024-26458	低危	1.20.1-2+deb12u1		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libk5crypto3	CVE-2024-26461	低危	1.20.1-2+deb12u1		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libc-bin	CVE-2019-9192	低危	2.36-9+deb12u7		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
libc6	CVE-2010-4756	低危	2.36-9+deb12u7		glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
libc6	CVE-2018-20796	低危	2.36-9+deb12u7		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
libkrb5-3	CVE-2018-5709	低危	1.20.1-2+deb12u1		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libkrb5-3	CVE-2024-26458	低危	1.20.1-2+deb12u1		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkrb5-3	CVE-2024-26461	低危	1.20.1-2+deb12u1		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libc6	CVE-2019-1010022	低危	2.36-9+deb12u7		glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-1010023	低危	2.36-9+deb12u7		glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-1010024	低危	2.36-9+deb12u7		glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libkrb5support0	CVE-2018-5709	低危	1.20.1-2+deb12u1		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libkrb5support0	CVE-2024-26458	低危	1.20.1-2+deb12u1		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkrb5support0	CVE-2024-26461	低危	1.20.1-2+deb12u1		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libc6	CVE-2019-1010025	低危	2.36-9+deb12u7		glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libldap-2.5-0	CVE-2015-3276	低危	2.5.13+dfsg-5		openldap: incorrect multi-keyword mode cipherstring parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2015-12-07 20:59 修改: 2023-04-28 18:28
libldap-2.5-0	CVE-2017-14159	低危	2.5.13+dfsg-5		openldap: Privilege escalation via PID file manipulation 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2017-09-05 18:29 修改: 2022-06-13 19:18
libldap-2.5-0	CVE-2017-17740	低危	2.5.13+dfsg-5		openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2017-12-18 06:29 修改: 2022-06-13 19:10
libldap-2.5-0	CVE-2020-15719	低危	2.5.13+dfsg-5		openldap: Certificate validation incorrectly matches name against CN-ID 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2020-07-14 14:15 修改: 2022-05-12 15:01
libc6	CVE-2019-9192	低危	2.36-9+deb12u7		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
libldap-common	CVE-2015-3276	低危	2.5.13+dfsg-5		openldap: incorrect multi-keyword mode cipherstring parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2015-12-07 20:59 修改: 2023-04-28 18:28
libldap-common	CVE-2017-14159	低危	2.5.13+dfsg-5		openldap: Privilege escalation via PID file manipulation 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2017-09-05 18:29 修改: 2022-06-13 19:18
libldap-common	CVE-2017-17740	低危	2.5.13+dfsg-5		openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2017-12-18 06:29 修改: 2022-06-13 19:10
libldap-common	CVE-2020-15719	低危	2.5.13+dfsg-5		openldap: Certificate validation incorrectly matches name against CN-ID 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2020-07-14 14:15 修改: 2022-05-12 15:01
libllvm15	CVE-2023-26924	低危	1:15.0.6-4+b1		llvm: mlir:: outlineSingleBlockRegion crashes with segmentation fault 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26924 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-03-27 22:15 修改: 2024-08-02 12:16
libllvm15	CVE-2023-29932	低危	1:15.0.6-4+b1		llvm: canonicalize pass crashed with segmentation fault 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29932 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-05-05 15:15 修改: 2023-05-11 18:02
libllvm15	CVE-2023-29933	低危	1:15.0.6-4+b1		llvm: one shot bufferize crashed with segmentation fault 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29933 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-05-05 15:15 修改: 2023-05-11 18:06
libllvm15	CVE-2023-29934	低危	1:15.0.6-4+b1		llvm: convert-scf-to-spirv Pass crashed with segmentation fault 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29934 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-05-05 15:15 修改: 2023-05-11 18:13
libllvm15	CVE-2023-29935	低危	1:15.0.6-4+b1		llvm: gpu-to-llvm Pass crashed with error message 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29935 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-05-05 15:15 修改: 2023-05-11 18:17
libllvm15	CVE-2023-29939	低危	1:15.0.6-4+b1		llvm-project commit a0138390 was discovered to contain a segmentation ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29939 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-05-05 15:15 修改: 2023-05-11 18:19
libllvm15	CVE-2023-29941	低危	1:15.0.6-4+b1		llvm: sparse-buffer-rewrite pass crashes with Segmentation fault 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29941 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-05-05 15:15 修改: 2023-11-07 04:11
libllvm15	CVE-2023-29942	低危	1:15.0.6-4+b1		llvm: convert-spirv-to-llvm Pass trigger Segmentation fault in LLVMStructType verifier 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29942 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-05-05 15:15 修改: 2023-05-11 18:23
libllvm15	CVE-2024-31852	低危	1:15.0.6-4+b1		llvm: LR register can be overwritten without data being saved to the stack on ARM 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31852 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-04-05 15:15 修改: 2024-12-04 21:15
libllvm15	CVE-2024-7883	低危	1:15.0.6-4+b1		clang: CMSE secure state may leak from stack to floating-point registers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7883 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-10-31 17:15 修改: 2024-11-01 12:57
libmount1	CVE-2022-0563	低危	2.38.1-5+deb12u2		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libcairo2	CVE-2017-7475	低危	1.16.0-7		cairo: NULL pointer dereference with a crafted font file 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2017-05-19 20:29 修改: 2023-02-12 23:30
libnss-systemd	CVE-2013-4392	低危	252.31-1~deb12u1		systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
libnss-systemd	CVE-2023-31437	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libnss-systemd	CVE-2023-31438	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libnss-systemd	CVE-2023-31439	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libcairo2	CVE-2018-18064	低危	1.16.0-7		cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2018-10-08 18:29 修改: 2023-11-07 02:54
libcairo2	CVE-2019-6461	低危	1.16.0-7		cairo: assertion problem in _cairo_arc_in_direction in cairo-arc.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6461 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
libcairo2	CVE-2019-6462	低危	1.16.0-7		cairo: infinite loop in the function _arc_error_normalized in the file cairo-arc.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6462 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
libnss3	CVE-2017-11695	低危	2:3.87.1-1+deb12u1		nss: Heap-buffer-overflow in alloc_segs 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11695 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2017-12-27 19:29 修改: 2020-03-16 23:15
libnss3	CVE-2017-11696	低危	2:3.87.1-1+deb12u1		nss: Heap-buffer-overflow in __hash_open 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11696 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2017-12-27 19:29 修改: 2020-03-16 23:15
libnss3	CVE-2017-11697	低危	2:3.87.1-1+deb12u1		nss: Floating Point Exception in __hash_open 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11697 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2017-12-27 19:29 修改: 2020-03-16 23:15
libnss3	CVE-2017-11698	低危	2:3.87.1-1+deb12u1		nss: Heap-buffer-overflow in __get_page 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11698 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2017-12-27 19:29 修改: 2020-03-16 23:15
libcups2	CVE-2014-8166	低危	2.4.2-3+deb12u8		cups: code execution via unescape ANSI escape sequences 漏洞详情: https://avd.aquasec.com/nvd/cve-2014-8166 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2018-01-12 17:29 修改: 2020-10-23 13:22
libapt-pkg6.0	CVE-2011-3374	低危	2.6.1		It was found that apt-key in apt, all versions, do not correctly valid ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2019-11-26 00:15 修改: 2021-02-09 16:08
bsdutils	CVE-2022-0563	低危	1:2.38.1-5+deb12u2		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libcurl4	CVE-2024-2379	低危	7.88.1-10+deb12u8		curl: QUIC certificate check bypass with wolfSSL 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2024-03-27 08:15 修改: 2024-11-14 20:35
libelf1	CVE-2024-25260	低危	0.188-2.1		elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-02-20 18:15 修改: 2024-08-01 13:47
coreutils	CVE-2016-2781	低危	9.1-1		coreutils: Non-privileged session can escape to the parent session in chroot 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
libpam-systemd	CVE-2013-4392	低危	252.31-1~deb12u1		systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
libpam-systemd	CVE-2023-31437	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libpam-systemd	CVE-2023-31438	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libpam-systemd	CVE-2023-31439	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
coreutils	CVE-2017-18018	低危	9.1-1		coreutils: race condition vulnerability in chown and chgrp 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2018-01-04 04:29 修改: 2018-01-19 15:46
apt	CVE-2011-3374	低危	2.6.1		It was found that apt-key in apt, all versions, do not correctly valid ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2019-11-26 00:15 修改: 2021-02-09 16:08
libpixman-1-0	CVE-2023-37769	低危	0.42.2-1		stress-test master commit e4c878 was discovered to contain a FPE vulne ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37769 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2023-07-17 20:15 修改: 2023-07-28 13:22
libpng16-16	CVE-2021-4214	低危	1.6.39-2		libpng: hardcoded value leads to heap-overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4214 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2022-08-24 16:15 修改: 2022-11-08 02:32
libproc2-0	CVE-2023-4016	低危	2:4.0.2-3		procps: ps buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-08-02 05:15 修改: 2023-12-15 18:19
libsmartcols1	CVE-2022-0563	低危	2.38.1-5+deb12u2		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
bash	TEMP-0841856-B18BAF	低危	5.2.15-2+b2		[Privilege escalation possible to other user than root] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libsqlite3-0	CVE-2021-45346	低危	3.40.1-2		sqlite: crafted SQL query allows a malicious user to obtain sensitive information 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45346 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2022-02-14 19:15 修改: 2024-08-04 05:15
libstdc++6	CVE-2022-27943	低危	12.2.0-14		binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
libstdc++6	CVE-2023-4039	低危	12.2.0-14		gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
libsystemd-shared	CVE-2013-4392	低危	252.31-1~deb12u1		systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
libsystemd-shared	CVE-2023-31437	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libsystemd-shared	CVE-2023-31438	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libsystemd-shared	CVE-2023-31439	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libsystemd0	CVE-2013-4392	低危	252.31-1~deb12u1		systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
libsystemd0	CVE-2023-31437	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libsystemd0	CVE-2023-31438	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libsystemd0	CVE-2023-31439	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
curl	CVE-2024-2379	低危	7.88.1-10+deb12u8		curl: QUIC certificate check bypass with wolfSSL 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2024-03-27 08:15 修改: 2024-11-14 20:35
libudev1	CVE-2013-4392	低危	252.31-1~deb12u1		systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
libudev1	CVE-2023-31437	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libudev1	CVE-2023-31438	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libudev1	CVE-2023-31439	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libuuid1	CVE-2022-0563	低危	2.38.1-5+deb12u2		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libexpat1	CVE-2023-52426	低危	2.5.0-1		expat: recursive XML entity expansion vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52426 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-02-04 20:15 修改: 2024-03-07 17:15
libexpat1	CVE-2024-28757	低危	2.5.0-1		expat: XML Entity Expansion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28757 镜像层: sha256:b3232f6d8e2e151357179f44d5db1c01771d9dc6062171638bce130ac7ad4745 发布日期: 2024-03-10 05:15 修改: 2024-05-01 19:15
libfdisk1	CVE-2022-0563	低危	2.38.1-5+deb12u2		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libxml2	CVE-2024-34459	低危	2.9.14+dfsg-1.3~deb12u1		libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34459 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-05-14 15:39 修改: 2024-08-22 18:35
libgbm1	CVE-2023-45913	低危	22.3.6-1+deb12u1		Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 04:15 修改: 2024-11-07 12:35
login	CVE-2007-5686	低危	1:4.13+dfsg1-1+b1		initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2007-10-28 17:08 修改: 2018-10-15 21:45
login	CVE-2023-29383	低危	1:4.13+dfsg1-1+b1		shadow: Improper input validation in shadow-utils package utility chfn 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
login	CVE-2024-56433	低危	1:4.13+dfsg1-1+b1		shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
login	TEMP-0628843-DBAD28	低危	1:4.13+dfsg1-1+b1		[more related to CVE-2005-4890] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
mount	CVE-2022-0563	低危	2.38.1-5+deb12u2		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libgbm1	CVE-2023-45919	低危	22.3.6-1+deb12u1		Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 05:15 修改: 2024-08-02 21:15
libgbm1	CVE-2023-45922	低危	22.3.6-1+deb12u1		glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 05:15 修改: 2024-11-19 19:35
libgbm1	CVE-2023-45931	低危	22.3.6-1+deb12u1		Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 04:15 修改: 2024-09-04 15:35
openssh-client	CVE-2007-2243	低危	1:9.2p1-2+deb12u3		OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabl ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2243 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2007-04-25 16:19 修改: 2017-07-29 01:31
openssh-client	CVE-2007-2768	低危	1:9.2p1-2+deb12u3		OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2768 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2007-05-21 20:30 修改: 2021-04-01 15:32
openssh-client	CVE-2008-3234	低危	1:9.2p1-2+deb12u3		sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapsh ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3234 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2008-07-18 16:41 修改: 2017-09-29 01:31
openssh-client	CVE-2016-20012	低危	1:9.2p1-2+deb12u3		openssh: Public key information leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20012 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2021-09-15 20:15 修改: 2024-08-06 04:16
openssh-client	CVE-2018-15919	低危	1:9.2p1-2+deb12u3		openssh: User enumeration via malformed packets in authentication requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15919 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2018-08-28 08:29 修改: 2019-03-07 16:29
openssh-client	CVE-2019-6110	低危	1:9.2p1-2+deb12u3		openssh: Acceptance and display of arbitrary stderr allows for spoofing of scp client output 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6110 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2019-01-31 18:29 修改: 2023-02-23 23:29
openssh-client	CVE-2020-14145	低危	1:9.2p1-2+deb12u3		openssh: Observable discrepancy leading to an information leak in the algorithm negotiation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14145 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2020-06-29 18:15 修改: 2022-04-28 19:34
openssh-client	CVE-2020-15778	低危	1:9.2p1-2+deb12u3		openssh: scp allows command injection when using backtick characters in the destination argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15778 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2020-07-24 14:15 修改: 2024-08-04 14:15
openssh-client	CVE-2023-51767	低危	1:9.2p1-2+deb12u3		openssh: authentication bypass via row hammer attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51767 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-12-24 07:15 修改: 2024-02-27 15:51
openssh-server	CVE-2007-2243	低危	1:9.2p1-2+deb12u3		OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabl ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2243 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2007-04-25 16:19 修改: 2017-07-29 01:31
openssh-server	CVE-2007-2768	低危	1:9.2p1-2+deb12u3		OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2768 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2007-05-21 20:30 修改: 2021-04-01 15:32
openssh-server	CVE-2008-3234	低危	1:9.2p1-2+deb12u3		sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapsh ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3234 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2008-07-18 16:41 修改: 2017-09-29 01:31
openssh-server	CVE-2016-20012	低危	1:9.2p1-2+deb12u3		openssh: Public key information leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20012 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2021-09-15 20:15 修改: 2024-08-06 04:16
openssh-server	CVE-2018-15919	低危	1:9.2p1-2+deb12u3		openssh: User enumeration via malformed packets in authentication requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15919 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2018-08-28 08:29 修改: 2019-03-07 16:29
openssh-server	CVE-2019-6110	低危	1:9.2p1-2+deb12u3		openssh: Acceptance and display of arbitrary stderr allows for spoofing of scp client output 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6110 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2019-01-31 18:29 修改: 2023-02-23 23:29
openssh-server	CVE-2020-14145	低危	1:9.2p1-2+deb12u3		openssh: Observable discrepancy leading to an information leak in the algorithm negotiation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14145 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2020-06-29 18:15 修改: 2022-04-28 19:34
openssh-server	CVE-2020-15778	低危	1:9.2p1-2+deb12u3		openssh: scp allows command injection when using backtick characters in the destination argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15778 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2020-07-24 14:15 修改: 2024-08-04 14:15
openssh-server	CVE-2023-51767	低危	1:9.2p1-2+deb12u3		openssh: authentication bypass via row hammer attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51767 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-12-24 07:15 修改: 2024-02-27 15:51
openssh-sftp-server	CVE-2007-2243	低危	1:9.2p1-2+deb12u3		OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabl ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2243 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2007-04-25 16:19 修改: 2017-07-29 01:31
openssh-sftp-server	CVE-2007-2768	低危	1:9.2p1-2+deb12u3		OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2768 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2007-05-21 20:30 修改: 2021-04-01 15:32
openssh-sftp-server	CVE-2008-3234	低危	1:9.2p1-2+deb12u3		sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapsh ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3234 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2008-07-18 16:41 修改: 2017-09-29 01:31
openssh-sftp-server	CVE-2016-20012	低危	1:9.2p1-2+deb12u3		openssh: Public key information leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20012 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2021-09-15 20:15 修改: 2024-08-06 04:16
openssh-sftp-server	CVE-2018-15919	低危	1:9.2p1-2+deb12u3		openssh: User enumeration via malformed packets in authentication requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15919 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2018-08-28 08:29 修改: 2019-03-07 16:29
openssh-sftp-server	CVE-2019-6110	低危	1:9.2p1-2+deb12u3		openssh: Acceptance and display of arbitrary stderr allows for spoofing of scp client output 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6110 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2019-01-31 18:29 修改: 2023-02-23 23:29
openssh-sftp-server	CVE-2020-14145	低危	1:9.2p1-2+deb12u3		openssh: Observable discrepancy leading to an information leak in the algorithm negotiation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14145 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2020-06-29 18:15 修改: 2022-04-28 19:34
openssh-sftp-server	CVE-2020-15778	低危	1:9.2p1-2+deb12u3		openssh: scp allows command injection when using backtick characters in the destination argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15778 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2020-07-24 14:15 修改: 2024-08-04 14:15
openssh-sftp-server	CVE-2023-51767	低危	1:9.2p1-2+deb12u3		openssh: authentication bypass via row hammer attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51767 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-12-24 07:15 修改: 2024-02-27 15:51
libgcc-s1	CVE-2022-27943	低危	12.2.0-14		binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
passwd	CVE-2007-5686	低危	1:4.13+dfsg1-1+b1		initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2007-10-28 17:08 修改: 2018-10-15 21:45
passwd	CVE-2023-29383	低危	1:4.13+dfsg1-1+b1		shadow: Improper input validation in shadow-utils package utility chfn 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
passwd	CVE-2024-56433	低危	1:4.13+dfsg1-1+b1		shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
passwd	TEMP-0628843-DBAD28	低危	1:4.13+dfsg1-1+b1		[more related to CVE-2005-4890] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libgcc-s1	CVE-2023-4039	低危	12.2.0-14		gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
perl-base	CVE-2011-4116	低危	5.36.0-7+deb12u1		perl: File:: Temp insecure temporary file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2020-01-31 18:15 修改: 2020-02-05 22:10
perl-base	CVE-2023-31486	低危	5.36.0-7+deb12u1		http-tiny: insecure TLS cert default 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2023-04-29 00:15 修改: 2024-11-29 12:15
procps	CVE-2023-4016	低危	2:4.0.2-3		procps: ps buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-08-02 05:15 修改: 2023-12-15 18:19
ssh	CVE-2007-2243	低危	1:9.2p1-2+deb12u3		OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabl ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2243 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2007-04-25 16:19 修改: 2017-07-29 01:31
ssh	CVE-2007-2768	低危	1:9.2p1-2+deb12u3		OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2768 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2007-05-21 20:30 修改: 2021-04-01 15:32
ssh	CVE-2008-3234	低危	1:9.2p1-2+deb12u3		sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapsh ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3234 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2008-07-18 16:41 修改: 2017-09-29 01:31
ssh	CVE-2016-20012	低危	1:9.2p1-2+deb12u3		openssh: Public key information leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20012 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2021-09-15 20:15 修改: 2024-08-06 04:16
ssh	CVE-2018-15919	低危	1:9.2p1-2+deb12u3		openssh: User enumeration via malformed packets in authentication requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15919 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2018-08-28 08:29 修改: 2019-03-07 16:29
ssh	CVE-2019-6110	低危	1:9.2p1-2+deb12u3		openssh: Acceptance and display of arbitrary stderr allows for spoofing of scp client output 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6110 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2019-01-31 18:29 修改: 2023-02-23 23:29
ssh	CVE-2020-14145	低危	1:9.2p1-2+deb12u3		openssh: Observable discrepancy leading to an information leak in the algorithm negotiation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14145 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2020-06-29 18:15 修改: 2022-04-28 19:34
ssh	CVE-2020-15778	低危	1:9.2p1-2+deb12u3		openssh: scp allows command injection when using backtick characters in the destination argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15778 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2020-07-24 14:15 修改: 2024-08-04 14:15
ssh	CVE-2023-51767	低危	1:9.2p1-2+deb12u3		openssh: authentication bypass via row hammer attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51767 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-12-24 07:15 修改: 2024-02-27 15:51
gcc-12-base	CVE-2022-27943	低危	12.2.0-14		binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
sudo	CVE-2005-1119	低危	1.9.13p3-1+deb12u1		Sudo VISudo 1.6.8 and earlier allows local users to corrupt arbitrary ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2005-1119 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2005-05-02 04:00 修改: 2008-09-05 20:48
systemd	CVE-2013-4392	低危	252.31-1~deb12u1		systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
systemd	CVE-2023-31437	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
systemd	CVE-2023-31438	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
systemd	CVE-2023-31439	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
systemd-sysv	CVE-2013-4392	低危	252.31-1~deb12u1		systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
systemd-sysv	CVE-2023-31437	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
systemd-sysv	CVE-2023-31438	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
systemd-sysv	CVE-2023-31439	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
systemd-timesyncd	CVE-2013-4392	低危	252.31-1~deb12u1		systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
systemd-timesyncd	CVE-2023-31437	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
systemd-timesyncd	CVE-2023-31438	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
systemd-timesyncd	CVE-2023-31439	低危	252.31-1~deb12u1		An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
sysvinit-utils	TEMP-0517018-A83CE6	低危	3.06-4		[sysvinit: no-root option in expert installer exposes locally exploitable security flaw] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tar	CVE-2005-2541	低危	1.34+dfsg-1.2+deb12u1		tar: does not properly warn the user when extracting setuid or setgid files 漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2005-08-10 04:00 修改: 2023-11-07 01:57
tar	TEMP-0290435-0B57B5	低危	1.34+dfsg-1.2+deb12u1		[tar's rmt command may have undesired side effects] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
util-linux	CVE-2022-0563	低危	2.38.1-5+deb12u2		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
util-linux-extra	CVE-2022-0563	低危	2.38.1-5+deb12u2		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:0cfc470edbb096bb8d360828ad852464ed58d325fff62612e5737339acfefd74 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libgcrypt20	CVE-2018-6829	低危	1.10.1-3		libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829 镜像层: sha256:5d4427064ecc46e3c2add169e9b5eafc7ed2be7861081ec925938ab628ac0e25 发布日期: 2018-02-07 23:29 修改: 2020-01-15 20:15
libgl1	CVE-2023-45924	低危	1.6.0-1		libglxproto.c in OpenGL libglvnd bb06db5a was discovered to contain a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45924 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 05:15 修改: 2024-08-02 21:15
libgl1-mesa-dri	CVE-2023-45913	低危	22.3.6-1+deb12u1		Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913 镜像层: sha256:ae48fbbd536e605e4de02c7a648a1af238463f06116470c1e1a4345896fd8c16 发布日期: 2024-03-27 04:15 修改: 2024-11-07 12:35

Node.js (node-pkg)

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

Python (python-pkg)

低危漏洞:0

中危漏洞:1

高危漏洞:2

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
py	CVE-2022-42969	高危	1.11.0		py: ReDoS in py library when used with subversion 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42969 镜像层: sha256:b5a60e559e9056fe65156b631b4e1118176b679e32f4c52fb7194647c7483839 发布日期: 2022-10-16 06:15 修改: 2024-08-03 14:15
setuptools	CVE-2024-6345	高危	69.5.1	70.0.0	pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6345 镜像层: sha256:2eb7c5261c956b64b3d1de7cfdd31b6a54999a4ab80acabccf9f2171d0796b60 发布日期: 2024-07-15 01:15 修改: 2024-07-15 13:00
PyPDF2	CVE-2023-36464	中危	3.0.1		pypdf: Possible Infinite Loop when a comment isn't followed by a character 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36464 镜像层: sha256:b5a60e559e9056fe65156b631b4e1118176b679e32f4c52fb7194647c7483839 发布日期: 2023-06-27 22:15 修改: 2023-07-06 16:13

软件包

漏洞

安全状态

安装版本

修复版本

漏洞信息

CVE-2022-42969

高危

1.11.0

py: ReDoS in py library when used with subversion

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42969

镜像层: sha256:b5a60e559e9056fe65156b631b4e1118176b679e32f4c52fb7194647c7483839

发布日期: 2022-10-16 06:15 修改: 2024-08-03 14:15

setuptools

CVE-2024-6345

高危

69.5.1

70.0.0

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6345

镜像层: sha256:2eb7c5261c956b64b3d1de7cfdd31b6a54999a4ab80acabccf9f2171d0796b60

发布日期: 2024-07-15 01:15 修改: 2024-07-15 13:00

PyPDF2

CVE-2023-36464

中危

3.0.1

pypdf: Possible Infinite Loop when a comment isn't followed by a character

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36464

镜像层: sha256:b5a60e559e9056fe65156b631b4e1118176b679e32f4c52fb7194647c7483839

发布日期: 2023-06-27 22:15 修改: 2023-07-06 16:13

/etc/ssh/ssh_host_rsa_key ()

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

/app/.venv/lib/python3.12/site-packages/PyJWT-2.10.1.dist-info/METADATA ()

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

/app/.venv/lib/python3.12/site-packages/litellm/llms/huggingface/huggingface_llms_metadata/hf_text_generation_models.txt ()

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

/app/.venv/lib/python3.12/site-packages/litellm/proxy/_types.py ()

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

/app/.venv/lib/python3.12/site-packages/litellm/proxy/pycache/_types.cpython-312.pyc ()

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

/etc/ssh/ssh_host_ecdsa_key ()

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

/etc/ssh/ssh_host_ed25519_key ()

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

ghcr.io/all-hands-ai/openhands:0.18 linux/amd64

全部漏洞信息

ghcr.io/all-hands-ai/openhands:0.18 (debian 12.5) (debian)

Node.js (node-pkg)

Python (python-pkg)

/etc/ssh/ssh_host_rsa_key ()

/app/.venv/lib/python3.12/site-packages/PyJWT-2.10.1.dist-info/METADATA ()

/app/.venv/lib/python3.12/site-packages/litellm/llms/huggingface/huggingface_llms_metadata/hf_text_generation_models.txt ()

/app/.venv/lib/python3.12/site-packages/litellm/proxy/_types.py ()

/app/.venv/lib/python3.12/site-packages/litellm/proxy/__pycache__/_types.cpython-312.pyc ()

/etc/ssh/ssh_host_ecdsa_key ()

/etc/ssh/ssh_host_ed25519_key ()

/app/.venv/lib/python3.12/site-packages/litellm/proxy/pycache/_types.cpython-312.pyc ()