ghcr.io/astrbotdevs/shipyard-neo-ship:latest linux/amd64

ghcr.io/astrbotdevs/shipyard-neo-ship:latest - Trivy安全扫描结果 扫描时间: 2026-07-01 10:14
全部漏洞信息
低危漏洞:321 中危漏洞:296 高危漏洞:141 严重漏洞:14

系统OS: debian 12.14 扫描引擎: Trivy 扫描时间: 2026-07-01 10:14

ghcr.io/astrbotdevs/shipyard-neo-ship:latest (debian 12.14) (debian)
低危漏洞:301 中危漏洞:234 高危漏洞:94 严重漏洞:14
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
libgnutls30 CVE-2026-33845 严重 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-30 18:16 修改: 2026-06-30 03:18

libgnutls30 CVE-2026-42010 严重 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Authentication Bypass via NUL Character in Username

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-07 12:16 修改: 2026-06-30 03:19

libperl5.36 CVE-2026-42496 严重 5.36.0-7+deb12u3 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-26 02:16 修改: 2026-06-30 03:19

libperl5.36 CVE-2026-8376 严重 5.36.0-7+deb12u3 Perl versions through 5.43.10 have a heap buffer overflow when compili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03

libsqlite3-0 CVE-2025-7458 严重 3.40.1-2+deb12u2 sqlite: SQLite integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7458

镜像层: sha256:09c914c62d6db278df1e2b9742a362358a1eea58a3c79ebf5165e841c43af0a4

发布日期: 2025-07-29 13:15 修改: 2026-06-17 10:04

libssh2-1 CVE-2026-55200 严重 1.10.0-3+b1 libssh2: libssh2 - Out-of-Bounds Write via Unchecked packet_length in transport.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55200

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-17 20:17 修改: 2026-06-26 19:15

nodejs CVE-2026-48930 严重 24.16.0-1nodesource1 nodejs: Node.js: Silent authority rebinding due to embedded-nul hostnames in TLS handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48930

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-26 02:16 修改: 2026-06-26 20:19

perl CVE-2026-42496 严重 5.36.0-7+deb12u3 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-26 02:16 修改: 2026-06-30 03:19

perl CVE-2026-8376 严重 5.36.0-7+deb12u3 Perl versions through 5.43.10 have a heap buffer overflow when compili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03

perl-base CVE-2026-42496 严重 5.36.0-7+deb12u3 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-26 02:16 修改: 2026-06-30 03:19

perl-base CVE-2026-8376 严重 5.36.0-7+deb12u3 Perl versions through 5.43.10 have a heap buffer overflow when compili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03

perl-modules-5.36 CVE-2026-42496 严重 5.36.0-7+deb12u3 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-26 02:16 修改: 2026-06-30 03:19

perl-modules-5.36 CVE-2026-8376 严重 5.36.0-7+deb12u3 Perl versions through 5.43.10 have a heap buffer overflow when compili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03

zlib1g CVE-2023-45853 严重 1:1.2.13.dfsg-1 zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45853

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2023-10-14 02:15 修改: 2026-06-17 06:29

libgnutls30 CVE-2026-3833 高危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-30 18:16 修改: 2026-06-30 03:19

libgnutls30 CVE-2026-42009 高危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-18 13:16 修改: 2026-06-30 03:19

libldap-2.5-0 CVE-2023-2953 高危 2.5.13+dfsg-5 openldap: null pointer dereference in ber_memalloc_x function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-05-30 22:15 修改: 2026-06-17 05:53

libncursesw6 CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:09c914c62d6db278df1e2b9742a362358a1eea58a3c79ebf5165e841c43af0a4

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

libacl1 CVE-2026-54369 高危 2.3.1-3 acl: Symlink traversal privilege escalation via libacl functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54369

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-29 14:16 修改: 2026-06-30 03:21

libattr1 CVE-2026-54371 高危 1:2.5.1-4 attr: Symlink Traversal Privilege Escalation via getfattr

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54371

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-29 14:16 修改: 2026-06-30 03:21

libperl5.36 CVE-2026-42497 高危 5.36.0-7+deb12u3 perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47

libperl5.36 CVE-2026-48962 高危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-27 04:16 修改: 2026-06-30 03:20

libperl5.36 CVE-2026-9538 高危 5.36.0-7+deb12u3 Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-26 02:16 修改: 2026-06-17 11:05

libpython3.11-minimal CVE-2025-69534 高危 3.11.2-6+deb12u7 python-markdown: denial of service via malformed HTML-like sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-05 15:16 修改: 2026-06-30 03:16

libpython3.11-minimal CVE-2026-11940 高危 3.11.2-6+deb12u7 tarfile.extractall() with the 'data' or 'tar' filter could be bypasse ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11940

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-23 17:16 修改: 2026-06-23 19:36

libpython3.11-minimal CVE-2026-3644 高危 3.11.2-6+deb12u7 cpython: Incomplete control character validation in http.cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:43

libpython3.11-minimal CVE-2026-4224 高危 3.11.2-6+deb12u7 cpython: Stack overflow parsing XML with deeply nested DTD content models

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56

libpython3.11-minimal CVE-2026-6100 高危 3.11.2-6+deb12u7 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-13 18:16 修改: 2026-06-30 03:21

libpython3.11-minimal CVE-2026-7210 高危 3.11.2-6+deb12u7 python: expat: Python/Expat: Denial of Service via crafted XML document

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-05-11 18:16 修改: 2026-06-17 11:02

libpython3.11-stdlib CVE-2025-69534 高危 3.11.2-6+deb12u7 python-markdown: denial of service via malformed HTML-like sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-05 15:16 修改: 2026-06-30 03:16

libpython3.11-stdlib CVE-2026-11940 高危 3.11.2-6+deb12u7 tarfile.extractall() with the 'data' or 'tar' filter could be bypasse ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11940

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-23 17:16 修改: 2026-06-23 19:36

libpython3.11-stdlib CVE-2026-3644 高危 3.11.2-6+deb12u7 cpython: Incomplete control character validation in http.cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:43

libpython3.11-stdlib CVE-2026-4224 高危 3.11.2-6+deb12u7 cpython: Stack overflow parsing XML with deeply nested DTD content models

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56

libpython3.11-stdlib CVE-2026-6100 高危 3.11.2-6+deb12u7 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-13 18:16 修改: 2026-06-30 03:21

libpython3.11-stdlib CVE-2026-7210 高危 3.11.2-6+deb12u7 python: expat: Python/Expat: Denial of Service via crafted XML document

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-05-11 18:16 修改: 2026-06-17 11:02

libcurl3-gnutls CVE-2026-5773 高危 7.88.1-10+deb12u14 curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59

libcurl3-gnutls CVE-2026-6276 高危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00

libssh2-1 CVE-2026-55199 高危 1.10.0-3+b1 libssh2: libssh2: Denial of Service via crafted SSH_MSG_EXT_INFO message

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55199

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-17 20:17 修改: 2026-06-26 19:16

libssh2-1 CVE-2026-7598 高危 1.10.0-3+b1 libssh2: integer overflow via large username or password arguments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7598

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-01 22:16 修改: 2026-06-30 03:21

libssl3 CVE-2026-45447 高危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-30 03:20

libtinfo6 CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

ncurses-base CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

ncurses-bin CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

libcurl4 CVE-2026-5773 高危 7.88.1-10+deb12u14 curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59

nodejs CVE-2026-48615 高危 24.16.0-1nodesource1 nodejs: Node.js: Information disclosure of proxy credentials via proxy tunnel error handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48615

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-26 02:16 修改: 2026-06-26 20:18

nodejs CVE-2026-48619 高危 24.16.0-1nodesource1 nodejs: Node.js: Denial of Service via unlimited HTTP/2 ORIGIN frames

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48619

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-26 02:16 修改: 2026-06-26 20:18

nodejs CVE-2026-48933 高危 24.16.0-1nodesource1 nodejs: Node.js WebCrypto: Denial of Service via large input to subtle.encrypt()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48933

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-26 02:16 修改: 2026-06-30 03:20

openssl CVE-2026-45447 高危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-30 03:20

libcurl4 CVE-2026-6276 高危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00

libexpat1 CVE-2025-59375 高危 2.5.0-1+deb12u2 firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59375

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-09-15 03:15 修改: 2026-06-17 09:46

perl CVE-2026-42497 高危 5.36.0-7+deb12u3 perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47

perl CVE-2026-48962 高危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-27 04:16 修改: 2026-06-30 03:20

perl CVE-2026-9538 高危 5.36.0-7+deb12u3 Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-26 02:16 修改: 2026-06-17 11:05

libexpat1 CVE-2026-25210 高危 2.5.0-1+deb12u2 libexpat: libexpat: Information disclosure and data integrity issues due to integer overflow in buffer reallocation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25210

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-30 07:16 修改: 2026-06-17 10:24

libexpat1 CVE-2026-45186 高危 2.5.0-1+deb12u2 libexpat: denial of service via crafted XML input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45186

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-10 07:16 修改: 2026-06-30 03:20

perl-base CVE-2026-42497 高危 5.36.0-7+deb12u3 perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47

perl-base CVE-2026-48962 高危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-27 04:16 修改: 2026-06-30 03:20

perl-base CVE-2026-9538 高危 5.36.0-7+deb12u3 Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-26 02:16 修改: 2026-06-17 11:05

curl CVE-2026-5773 高危 7.88.1-10+deb12u14 curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59

curl CVE-2026-6276 高危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00

perl-modules-5.36 CVE-2026-42497 高危 5.36.0-7+deb12u3 perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47

perl-modules-5.36 CVE-2026-48962 高危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-27 04:16 修改: 2026-06-30 03:20

perl-modules-5.36 CVE-2026-9538 高危 5.36.0-7+deb12u3 Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-26 02:16 修改: 2026-06-17 11:05

python3.11 CVE-2025-69534 高危 3.11.2-6+deb12u7 python-markdown: denial of service via malformed HTML-like sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-05 15:16 修改: 2026-06-30 03:16

python3.11 CVE-2026-11940 高危 3.11.2-6+deb12u7 tarfile.extractall() with the 'data' or 'tar' filter could be bypasse ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11940

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-23 17:16 修改: 2026-06-23 19:36

python3.11 CVE-2026-3644 高危 3.11.2-6+deb12u7 cpython: Incomplete control character validation in http.cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:43

python3.11 CVE-2026-4224 高危 3.11.2-6+deb12u7 cpython: Stack overflow parsing XML with deeply nested DTD content models

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56

python3.11 CVE-2026-6100 高危 3.11.2-6+deb12u7 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-13 18:16 修改: 2026-06-30 03:21

python3.11 CVE-2026-7210 高危 3.11.2-6+deb12u7 python: expat: Python/Expat: Denial of Service via crafted XML document

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-05-11 18:16 修改: 2026-06-17 11:02

python3.11-minimal CVE-2025-69534 高危 3.11.2-6+deb12u7 python-markdown: denial of service via malformed HTML-like sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-05 15:16 修改: 2026-06-30 03:16

python3.11-minimal CVE-2026-11940 高危 3.11.2-6+deb12u7 tarfile.extractall() with the 'data' or 'tar' filter could be bypasse ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11940

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-23 17:16 修改: 2026-06-23 19:36

python3.11-minimal CVE-2026-3644 高危 3.11.2-6+deb12u7 cpython: Incomplete control character validation in http.cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:43

python3.11-minimal CVE-2026-4224 高危 3.11.2-6+deb12u7 cpython: Stack overflow parsing XML with deeply nested DTD content models

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56

python3.11-minimal CVE-2026-6100 高危 3.11.2-6+deb12u7 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-13 18:16 修改: 2026-06-30 03:21

python3.11-minimal CVE-2026-7210 高危 3.11.2-6+deb12u7 python: expat: Python/Expat: Denial of Service via crafted XML document

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-05-11 18:16 修改: 2026-06-17 11:02

vim-common CVE-2026-26269 高危 2:9.0.1378-2+deb12u2 vim: Netbeans specialKeys stack buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26269

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-13 20:17 修改: 2026-06-17 10:26

vim-common CVE-2026-28417 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via OS command injection in the netrw plugin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28417

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28

vim-common CVE-2026-28421 高危 2:9.0.1378-2+deb12u2 vim: Vim: Denial of service and information disclosure via crafted swap file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28421

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28

vim-common CVE-2026-33412 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via command injection in glob() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33412

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-03-24 20:16 修改: 2026-06-30 03:18

vim-common CVE-2026-34982 高危 2:9.0.1378-2+deb12u2 vim: arbitrary command execution via modeline sandbox bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34982

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-04-06 16:16 修改: 2026-06-30 03:18

vim-common CVE-2026-35177 高危 2:9.0.1378-2+deb12u2 vim: zip.vim: Vim zip.vim plugin: Arbitrary file overwrite via path traversal bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35177

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-04-06 18:16 修改: 2026-06-17 10:40

vim-common CVE-2026-39881 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via command injection in NetBeans interface

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39881

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-04-08 21:17 修改: 2026-06-17 10:42

vim-common CVE-2026-46483 高危 2:9.0.1378-2+deb12u2 vim: command injection when decompressing .tgz archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46483

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-15 15:16 修改: 2026-06-17 10:53

vim-common CVE-2026-47162 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary Code Execution via crafted directory names

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47162

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-11 19:16 修改: 2026-06-30 03:20

vim-common CVE-2026-52858 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to version 9.2. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-52858

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:57

vim-common CVE-2026-52860 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution through Python omni-completion.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-52860

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-11 19:16 修改: 2026-06-30 03:20

vim-common CVE-2026-55693 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to 9.2.0653, th ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55693

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 14:17

vim-common CVE-2026-55895 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to 9.2.0663, a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55895

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 05:16

vim-common CVE-2026-57453 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via crafted zip archive entry names

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57453

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 17:16

vim-common CVE-2026-57455 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to 9.2.0698, th ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57455

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 04:23

vim-common CVE-2026-57456 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to 9.2.0699, Vi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57456

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 05:16

vim-tiny CVE-2026-26269 高危 2:9.0.1378-2+deb12u2 vim: Netbeans specialKeys stack buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26269

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-13 20:17 修改: 2026-06-17 10:26

vim-tiny CVE-2026-28417 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via OS command injection in the netrw plugin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28417

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28

vim-tiny CVE-2026-28421 高危 2:9.0.1378-2+deb12u2 vim: Vim: Denial of service and information disclosure via crafted swap file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28421

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28

vim-tiny CVE-2026-33412 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via command injection in glob() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33412

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-03-24 20:16 修改: 2026-06-30 03:18

vim-tiny CVE-2026-34982 高危 2:9.0.1378-2+deb12u2 vim: arbitrary command execution via modeline sandbox bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34982

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-04-06 16:16 修改: 2026-06-30 03:18

vim-tiny CVE-2026-35177 高危 2:9.0.1378-2+deb12u2 vim: zip.vim: Vim zip.vim plugin: Arbitrary file overwrite via path traversal bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35177

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-04-06 18:16 修改: 2026-06-17 10:40

vim-tiny CVE-2026-39881 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via command injection in NetBeans interface

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39881

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-04-08 21:17 修改: 2026-06-17 10:42

vim-tiny CVE-2026-46483 高危 2:9.0.1378-2+deb12u2 vim: command injection when decompressing .tgz archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46483

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-15 15:16 修改: 2026-06-17 10:53

vim-tiny CVE-2026-47162 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary Code Execution via crafted directory names

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47162

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-11 19:16 修改: 2026-06-30 03:20

vim-tiny CVE-2026-52858 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to version 9.2. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-52858

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:57

vim-tiny CVE-2026-52860 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution through Python omni-completion.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-52860

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-11 19:16 修改: 2026-06-30 03:20

vim-tiny CVE-2026-55693 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to 9.2.0653, th ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55693

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 14:17

vim-tiny CVE-2026-55895 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to 9.2.0663, a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55895

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 05:16

vim-tiny CVE-2026-57453 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via crafted zip archive entry names

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57453

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 17:16

vim-tiny CVE-2026-57455 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to 9.2.0698, th ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57455

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 04:23

vim-tiny CVE-2026-57456 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to 9.2.0699, Vi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57456

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 05:16

libgnutls30 CVE-2026-33846 高危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-04 10:15 修改: 2026-06-30 03:18

libmount1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libmount1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

gnupg CVE-2025-30258 中危 2.2.40-1.1+deb12u2 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

libncursesw6 CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:09c914c62d6db278df1e2b9742a362358a1eea58a3c79ebf5165e841c43af0a4

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39

libp11-kit0 CVE-2026-13757 中危 0.24.1-2 p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-29 19:16 修改: 2026-06-29 20:17

libpam-modules CVE-2024-10041 中危 1.5.2-6+deb12u2 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16

libpam-modules CVE-2026-54411 中危 1.5.2-6+deb12u2 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58

libpam-modules-bin CVE-2024-10041 中危 1.5.2-6+deb12u2 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16

libpam-modules-bin CVE-2026-54411 中危 1.5.2-6+deb12u2 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58

libpam-runtime CVE-2024-10041 中危 1.5.2-6+deb12u2 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16

libpam-runtime CVE-2026-54411 中危 1.5.2-6+deb12u2 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58

libpam0g CVE-2024-10041 中危 1.5.2-6+deb12u2 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16

libpam0g CVE-2026-54411 中危 1.5.2-6+deb12u2 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58

gnupg CVE-2025-68972 中危 2.2.40-1.1+deb12u2 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59

gnupg-l10n CVE-2025-30258 中危 2.2.40-1.1+deb12u2 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

gnupg-l10n CVE-2025-68972 中危 2.2.40-1.1+deb12u2 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59

gnupg-utils CVE-2025-30258 中危 2.2.40-1.1+deb12u2 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

gnupg-utils CVE-2025-68972 中危 2.2.40-1.1+deb12u2 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59

libperl5.36 CVE-2025-15649 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-27 04:16 修改: 2026-06-17 08:38

libperl5.36 CVE-2026-12087 中危 5.36.0-7+deb12u3 perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-15 22:16 修改: 2026-06-17 10:14

libperl5.36 CVE-2026-48959 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55

libperl5.36 CVE-2026-48961 中危 5.36.0-7+deb12u3 perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55

libperl5.36 CVE-2026-7010 中危 5.36.0-7+deb12u3 HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-11 22:22 修改: 2026-06-17 11:01

gpg CVE-2025-30258 中危 2.2.40-1.1+deb12u2 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

gpg CVE-2025-68972 中危 2.2.40-1.1+deb12u2 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59

gpg-agent CVE-2025-30258 中危 2.2.40-1.1+deb12u2 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

gpg-agent CVE-2025-68972 中危 2.2.40-1.1+deb12u2 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59

gpg-wks-client CVE-2025-30258 中危 2.2.40-1.1+deb12u2 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

gpg-wks-client CVE-2025-68972 中危 2.2.40-1.1+deb12u2 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59

libpython3.11-minimal CVE-2025-12781 中危 3.11.2-6+deb12u7 cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-01-21 20:16 修改: 2026-06-17 08:32

libpython3.11-minimal CVE-2025-15366 中危 3.11.2-6+deb12u7 cpython: IMAP command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37

libpython3.11-minimal CVE-2025-15367 中危 3.11.2-6+deb12u7 cpython: POP3 command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37

libpython3.11-minimal CVE-2026-0864 中危 3.11.2-6+deb12u7 python: cpython: Python configparser: Configuration injection via crafted multi-line input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0864

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-23 18:17 修改: 2026-06-25 19:51

libpython3.11-minimal CVE-2026-1502 中危 3.11.2-6+deb12u7 python: Python: HTTP header injection via CR/LF in proxy tunnel headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-10 18:16 修改: 2026-06-17 10:15

libpython3.11-minimal CVE-2026-3276 中危 3.11.2-6+deb12u7 python: Python unicodedata: Denial of Service due to excessive CPU consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43

libpython3.11-minimal CVE-2026-3446 中危 3.11.2-6+deb12u7 python: Python base64: Incomplete data decoding due to premature stop at padding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3446

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-10 19:16 修改: 2026-06-17 10:43

libpython3.11-minimal CVE-2026-6019 中危 3.11.2-6+deb12u7 python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00

libpython3.11-minimal CVE-2026-7774 中危 3.11.2-6+deb12u7 python: CPython: Python tarfile: Arbitrary file write via crafted link entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-04 16:16 修改: 2026-06-17 11:02

libpython3.11-minimal CVE-2026-8328 中危 3.11.2-6+deb12u7 The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-05-13 21:16 修改: 2026-06-17 11:03

libpython3.11-minimal CVE-2026-9669 中危 3.11.2-6+deb12u7 python: Python: Denial of Service via out-of-bounds write in BZ2 decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-08 23:17 修改: 2026-06-23 18:18

gpg-wks-server CVE-2025-30258 中危 2.2.40-1.1+deb12u2 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

gpg-wks-server CVE-2025-68972 中危 2.2.40-1.1+deb12u2 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59

gpgconf CVE-2025-30258 中危 2.2.40-1.1+deb12u2 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

gpgconf CVE-2025-68972 中危 2.2.40-1.1+deb12u2 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59

gpgsm CVE-2025-30258 中危 2.2.40-1.1+deb12u2 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

gpgsm CVE-2025-68972 中危 2.2.40-1.1+deb12u2 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59

libpython3.11-stdlib CVE-2025-12781 中危 3.11.2-6+deb12u7 cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-01-21 20:16 修改: 2026-06-17 08:32

libpython3.11-stdlib CVE-2025-15366 中危 3.11.2-6+deb12u7 cpython: IMAP command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37

libpython3.11-stdlib CVE-2025-15367 中危 3.11.2-6+deb12u7 cpython: POP3 command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37

libpython3.11-stdlib CVE-2026-0864 中危 3.11.2-6+deb12u7 python: cpython: Python configparser: Configuration injection via crafted multi-line input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0864

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-23 18:17 修改: 2026-06-25 19:51

libpython3.11-stdlib CVE-2026-1502 中危 3.11.2-6+deb12u7 python: Python: HTTP header injection via CR/LF in proxy tunnel headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-10 18:16 修改: 2026-06-17 10:15

libpython3.11-stdlib CVE-2026-3276 中危 3.11.2-6+deb12u7 python: Python unicodedata: Denial of Service due to excessive CPU consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43

libpython3.11-stdlib CVE-2026-3446 中危 3.11.2-6+deb12u7 python: Python base64: Incomplete data decoding due to premature stop at padding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3446

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-10 19:16 修改: 2026-06-17 10:43

libpython3.11-stdlib CVE-2026-6019 中危 3.11.2-6+deb12u7 python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00

libpython3.11-stdlib CVE-2026-7774 中危 3.11.2-6+deb12u7 python: CPython: Python tarfile: Arbitrary file write via crafted link entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-04 16:16 修改: 2026-06-17 11:02

libpython3.11-stdlib CVE-2026-8328 中危 3.11.2-6+deb12u7 The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-05-13 21:16 修改: 2026-06-17 11:03

libpython3.11-stdlib CVE-2026-9669 中危 3.11.2-6+deb12u7 python: Python: Denial of Service via out-of-bounds write in BZ2 decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-08 23:17 修改: 2026-06-23 18:18

libsmartcols1 CVE-2026-13595 中危 2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

libsmartcols1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libsmartcols1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

gpgv CVE-2025-30258 中危 2.2.40-1.1+deb12u2 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

libsqlite3-0 CVE-2025-7709 中危 3.40.1-2+deb12u2 An integer overflow exists in the FTS5 https://sqlite.org/fts5.html e ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7709

镜像层: sha256:09c914c62d6db278df1e2b9742a362358a1eea58a3c79ebf5165e841c43af0a4

发布日期: 2025-09-08 15:15 修改: 2026-06-17 10:05

libsqlite3-0 CVE-2026-11822 中危 3.40.1-2+deb12u2 SQLite before 3.53.2 contains memory corruption vulnerabilities in the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11822

镜像层: sha256:09c914c62d6db278df1e2b9742a362358a1eea58a3c79ebf5165e841c43af0a4

发布日期: 2026-06-09 20:16 修改: 2026-06-17 10:14

libsqlite3-0 CVE-2026-11824 中危 3.40.1-2+deb12u2 SQLite before 3.53.2 contains a heap-based buffer overflow vulnerabili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11824

镜像层: sha256:09c914c62d6db278df1e2b9742a362358a1eea58a3c79ebf5165e841c43af0a4

发布日期: 2026-06-09 20:16 修改: 2026-06-17 10:14

gpgv CVE-2025-68972 中危 2.2.40-1.1+deb12u2 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59

gzip CVE-2026-41991 中危 1.12-1 gzip: gzip: Arbitrary file overwrite via insecure temporary file handling in gzexe utility

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41991

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-29 12:16 修改: 2026-06-29 19:12

bsdutils CVE-2026-3184 中危 1:2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

libssh2-1 CVE-2025-15661 中危 1.10.0-3+b1 libssh2: libssh2: Information disclosure and denial of service via crafted SFTP response

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15661

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-18 21:16 修改: 2026-06-26 02:35

libssh2-1 CVE-2026-58050 中危 1.10.0-3+b1 libssh2: libssh2: Heap buffer overflow via integer overflow in publickey attribute allocation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58050

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-28 02:16 修改: 2026-06-29 19:09

libssh2-1 CVE-2026-58051 中危 1.10.0-3+b1 libssh2: libssh2: Denial of service or information disclosure via malformed SSH publickey response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58051

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-28 02:16 修改: 2026-06-29 19:09

libacl1 CVE-2026-54370 中危 2.3.1-3 acl: TOCTOU Symlink Traversal via getfacl/setfacl

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54370

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-29 14:16 修改: 2026-06-29 19:22

libssl3 CVE-2026-34182 中危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38

libssl3 CVE-2026-45445 中危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: AES-OCB IV Ignored on EVP_Cipher() Path

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52

bsdutils CVE-2026-13595 中危 1:2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

libtinfo6 CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39

libuuid1 CVE-2026-13595 中危 2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

libuuid1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libuuid1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

libxml2 CVE-2026-0990 中危 2.9.14+dfsg-1.3~deb12u5 libxml2: libxml2: Denial of Service via uncontrolled recursion in XML catalog processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0990

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-15 15:15 修改: 2026-06-29 19:04

libxml2 CVE-2026-6653 中危 2.9.14+dfsg-1.3~deb12u5 libxml2: mingw-libxml2: libxml2: Denial of Service via crafted XML input due to use-after-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6653

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-22 14:17 修改: 2026-06-22 18:16

libxslt1.1 CVE-2025-10911 中危 1.1.35-1+deb12u4 libxslt: use-after-free with key data stored cross-RVT

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10911

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-09-25 16:15 修改: 2026-06-30 00:16

mount CVE-2026-13595 中危 2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

mount CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

mount CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

nano CVE-2026-6843 中危 7.2-1+deb12u1 nano: nano: Format string vulnerability leads to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6843

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-04-22 09:16 修改: 2026-06-17 11:01

libblkid1 CVE-2026-13595 中危 2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

ncurses-base CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39

libblkid1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

ncurses-bin CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39

libblkid1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

libbz2-1.0 CVE-2026-42250 中危 1.0.8-5+b1 bzip2: bzip2: Denial of Service in bzip2recover via a specially crafted file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42250

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-28 14:16 修改: 2026-06-17 10:47

libc-bin CVE-2026-5435 中危 2.36-9+deb12u14 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59

libc-bin CVE-2026-5450 中危 2.36-9+deb12u14 glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59

nodejs CVE-2026-21717 中危 24.16.0-1nodesource1 nodejs: v8: Node.js: Denial of Service via V8 string hashing mechanism due to predictable hash collisions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-21717

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-30 20:16 修改: 2026-06-17 10:18

nodejs CVE-2026-48618 中危 24.16.0-1nodesource1 nodejs: Node.js: Authentication bypass due to TLS hostname handling and unicode dot separator mismatch

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48618

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-26 02:16 修改: 2026-06-26 20:18

nodejs CVE-2026-48928 中危 24.16.0-1nodesource1 Node.js: Node.js: Trust-policy bypass due to hostname matching inconsistency

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48928

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-26 02:16 修改: 2026-06-26 20:19

nodejs CVE-2026-48934 中危 24.16.0-1nodesource1 nodejs: Node.js: Certification validation bypass in TLS host verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48934

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-26 02:16 修改: 2026-06-29 14:16

nodejs CVE-2026-48937 中危 24.16.0-1nodesource1 A flaw in Node.js HTTP/2 server API can cause servers to keep acceptin ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48937

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-18 19:16 修改: 2026-06-22 20:20

libc-bin CVE-2026-5928 中危 2.36-9+deb12u14 glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59

openssl CVE-2026-34182 中危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38

openssl CVE-2026-45445 中危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: AES-OCB IV Ignored on EVP_Cipher() Path

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52

libc-bin CVE-2026-6238 中危 2.36-9+deb12u14 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17

libc6 CVE-2026-5435 中危 2.36-9+deb12u14 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59

libc6 CVE-2026-5450 中危 2.36-9+deb12u14 glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59

libc6 CVE-2026-5928 中危 2.36-9+deb12u14 glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59

libc6 CVE-2026-6238 中危 2.36-9+deb12u14 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17

perl CVE-2025-15649 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-27 04:16 修改: 2026-06-17 08:38

perl CVE-2026-12087 中危 5.36.0-7+deb12u3 perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-15 22:16 修改: 2026-06-17 10:14

perl CVE-2026-48959 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55

perl CVE-2026-48961 中危 5.36.0-7+deb12u3 perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55

perl CVE-2026-7010 中危 5.36.0-7+deb12u3 HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-11 22:22 修改: 2026-06-17 11:01

bsdutils CVE-2026-27456 中危 1:2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

curl CVE-2026-11856 中危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11856

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl3-gnutls CVE-2026-11856 中危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11856

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl3-gnutls CVE-2026-1965 中危 7.88.1-10+deb12u14 curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-03-11 11:15 修改: 2026-06-17 10:16

libcurl3-gnutls CVE-2026-3783 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44

perl-base CVE-2025-15649 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-27 04:16 修改: 2026-06-17 08:38

perl-base CVE-2026-12087 中危 5.36.0-7+deb12u3 perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-15 22:16 修改: 2026-06-17 10:14

perl-base CVE-2026-48959 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55

perl-base CVE-2026-48961 中危 5.36.0-7+deb12u3 perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55

perl-base CVE-2026-7010 中危 5.36.0-7+deb12u3 HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-11 22:22 修改: 2026-06-17 11:01

libcurl3-gnutls CVE-2026-3784 中危 7.88.1-10+deb12u14 curl: curl: Unauthorized access due to improper HTTP proxy connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44

libcurl3-gnutls CVE-2026-4873 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure due to incorrect TLS connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:57

libcurl3-gnutls CVE-2026-5545 中危 7.88.1-10+deb12u14 curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59

libcurl3-gnutls CVE-2026-6253 中危 7.88.1-10+deb12u14 curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00

libcurl3-gnutls CVE-2026-6429 中危 7.88.1-10+deb12u14 curl: libcurl: Credential leak via reused proxy connection during HTTP redirects

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00

perl-modules-5.36 CVE-2025-15649 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-27 04:16 修改: 2026-06-17 08:38

perl-modules-5.36 CVE-2026-12087 中危 5.36.0-7+deb12u3 perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-15 22:16 修改: 2026-06-17 10:14

perl-modules-5.36 CVE-2026-48959 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55

perl-modules-5.36 CVE-2026-48961 中危 5.36.0-7+deb12u3 perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55

perl-modules-5.36 CVE-2026-7010 中危 5.36.0-7+deb12u3 HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-11 22:22 修改: 2026-06-17 11:01

libcurl3-gnutls CVE-2026-7168 中危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:01

libcurl3-gnutls CVE-2026-8927 中危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

curl CVE-2026-1965 中危 7.88.1-10+deb12u14 curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-03-11 11:15 修改: 2026-06-17 10:16

curl CVE-2026-3783 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44

libcurl4 CVE-2026-11856 中危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11856

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl4 CVE-2026-1965 中危 7.88.1-10+deb12u14 curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-03-11 11:15 修改: 2026-06-17 10:16

python3.11 CVE-2025-12781 中危 3.11.2-6+deb12u7 cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-01-21 20:16 修改: 2026-06-17 08:32

python3.11 CVE-2025-15366 中危 3.11.2-6+deb12u7 cpython: IMAP command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37

python3.11 CVE-2025-15367 中危 3.11.2-6+deb12u7 cpython: POP3 command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37

python3.11 CVE-2026-0864 中危 3.11.2-6+deb12u7 python: cpython: Python configparser: Configuration injection via crafted multi-line input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0864

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-23 18:17 修改: 2026-06-25 19:51

python3.11 CVE-2026-1502 中危 3.11.2-6+deb12u7 python: Python: HTTP header injection via CR/LF in proxy tunnel headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-10 18:16 修改: 2026-06-17 10:15

python3.11 CVE-2026-3276 中危 3.11.2-6+deb12u7 python: Python unicodedata: Denial of Service due to excessive CPU consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43

python3.11 CVE-2026-3446 中危 3.11.2-6+deb12u7 python: Python base64: Incomplete data decoding due to premature stop at padding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3446

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-10 19:16 修改: 2026-06-17 10:43

python3.11 CVE-2026-6019 中危 3.11.2-6+deb12u7 python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00

python3.11 CVE-2026-7774 中危 3.11.2-6+deb12u7 python: CPython: Python tarfile: Arbitrary file write via crafted link entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-04 16:16 修改: 2026-06-17 11:02

python3.11 CVE-2026-8328 中危 3.11.2-6+deb12u7 The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-05-13 21:16 修改: 2026-06-17 11:03

python3.11 CVE-2026-9669 中危 3.11.2-6+deb12u7 python: Python: Denial of Service via out-of-bounds write in BZ2 decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-08 23:17 修改: 2026-06-23 18:18

libcurl4 CVE-2026-3783 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44

libcurl4 CVE-2026-3784 中危 7.88.1-10+deb12u14 curl: curl: Unauthorized access due to improper HTTP proxy connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44

libcurl4 CVE-2026-4873 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure due to incorrect TLS connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:57

libcurl4 CVE-2026-5545 中危 7.88.1-10+deb12u14 curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59

libcurl4 CVE-2026-6253 中危 7.88.1-10+deb12u14 curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00

libcurl4 CVE-2026-6429 中危 7.88.1-10+deb12u14 curl: libcurl: Credential leak via reused proxy connection during HTTP redirects

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00

python3.11-minimal CVE-2025-12781 中危 3.11.2-6+deb12u7 cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-01-21 20:16 修改: 2026-06-17 08:32

python3.11-minimal CVE-2025-15366 中危 3.11.2-6+deb12u7 cpython: IMAP command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37

python3.11-minimal CVE-2025-15367 中危 3.11.2-6+deb12u7 cpython: POP3 command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37

python3.11-minimal CVE-2026-0864 中危 3.11.2-6+deb12u7 python: cpython: Python configparser: Configuration injection via crafted multi-line input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0864

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-23 18:17 修改: 2026-06-25 19:51

python3.11-minimal CVE-2026-1502 中危 3.11.2-6+deb12u7 python: Python: HTTP header injection via CR/LF in proxy tunnel headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-10 18:16 修改: 2026-06-17 10:15

python3.11-minimal CVE-2026-3276 中危 3.11.2-6+deb12u7 python: Python unicodedata: Denial of Service due to excessive CPU consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43

python3.11-minimal CVE-2026-3446 中危 3.11.2-6+deb12u7 python: Python base64: Incomplete data decoding due to premature stop at padding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3446

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-10 19:16 修改: 2026-06-17 10:43

python3.11-minimal CVE-2026-6019 中危 3.11.2-6+deb12u7 python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00

python3.11-minimal CVE-2026-7774 中危 3.11.2-6+deb12u7 python: CPython: Python tarfile: Arbitrary file write via crafted link entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-04 16:16 修改: 2026-06-17 11:02

python3.11-minimal CVE-2026-8328 中危 3.11.2-6+deb12u7 The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-05-13 21:16 修改: 2026-06-17 11:03

python3.11-minimal CVE-2026-9669 中危 3.11.2-6+deb12u7 python: Python: Denial of Service via out-of-bounds write in BZ2 decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-08 23:17 修改: 2026-06-23 18:18

tar CVE-2026-5704 中危 1.34+dfsg-1.2+deb12u1 tar: tar: Hidden file injection via crafted archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-06 16:16 修改: 2026-06-17 10:59

util-linux CVE-2026-13595 中危 2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

util-linux CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

util-linux CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

util-linux-extra CVE-2026-13595 中危 2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

util-linux-extra CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

util-linux-extra CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

libcurl4 CVE-2026-7168 中危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:01

libcurl4 CVE-2026-8927 中危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

curl CVE-2026-3784 中危 7.88.1-10+deb12u14 curl: curl: Unauthorized access due to improper HTTP proxy connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44

curl CVE-2026-4873 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure due to incorrect TLS connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:57

curl CVE-2026-5545 中危 7.88.1-10+deb12u14 curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59

libexpat1 CVE-2025-66382 中危 2.5.0-1+deb12u2 libexpat: libexpat: Denial of service via crafted file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-11-28 07:15 修改: 2026-06-17 09:56

libexpat1 CVE-2026-32776 中危 2.5.0-1+deb12u2 libexpat: libexpat: Denial of Service due to NULL pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32776

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36

libexpat1 CVE-2026-32777 中危 2.5.0-1+deb12u2 libexpat: libexpat: Denial of Service via infinite loop in DTD content parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32777

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36

libexpat1 CVE-2026-32778 中危 2.5.0-1+deb12u2 libexpat: libexpat: Denial of Service via NULL pointer dereference after out-of-memory condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32778

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36

libexpat1 CVE-2026-50219 中危 2.5.0-1+deb12u2 expat: libexpat: Use-after-free vulnerability due to improper handler call depth tracking

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50219

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-04 06:16 修改: 2026-06-17 10:57

libexpat1 CVE-2026-56132 中危 2.5.0-1+deb12u2 expat: libexpat: Arbitrary Code Execution via Heap-based Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56132

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-19 06:17 修改: 2026-06-23 20:15

libexpat1 CVE-2026-56403 中危 2.5.0-1+deb12u2 libexpat: libexpat: Arbitrary code execution due to integer overflow in storeAtts

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56403

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:15

libexpat1 CVE-2026-56404 中危 2.5.0-1+deb12u2 libexpat before 2.8.2 has an integer overflow in addBinding.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56404

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:15

libexpat1 CVE-2026-56405 中危 2.5.0-1+deb12u2 libexpat: libexpat: Information disclosure and arbitrary code execution via integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56405

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:14

libexpat1 CVE-2026-56406 中危 2.5.0-1+deb12u2 libexpat: libexpat: Arbitrary code execution via integer overflow in XML_ParseBuffer

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56406

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:29

libexpat1 CVE-2026-56410 中危 2.5.0-1+deb12u2 libexpat: libexpat: Integer overflow in xmlwf can lead to information disclosure and arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56410

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:18

vim-common CVE-2025-29768 中危 2:9.0.1378-2+deb12u2 vim: Vim vulnerable to potential data loss with zip.vim and special crafted zip files

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29768

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-03-13 17:15 修改: 2026-06-17 09:05

vim-common CVE-2025-53905 中危 2:9.0.1378-2+deb12u2 vim: Vim path traversial

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53905

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-07-15 21:15 修改: 2026-06-17 09:39

vim-common CVE-2025-53906 中危 2:9.0.1378-2+deb12u2 vim: Vim path traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53906

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-07-15 21:15 修改: 2026-06-17 09:39

vim-common CVE-2026-25749 中危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via 'helpfile' option processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25749

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-06 23:15 修改: 2026-06-17 10:25

vim-common CVE-2026-28418 中危 2:9.0.1378-2+deb12u2 vim: Vim: Information disclosure via heap-based buffer overflow in Emacs-style tags file parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28418

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28

vim-common CVE-2026-28420 中危 2:9.0.1378-2+deb12u2 vim: Vim: Information disclosure and denial of service via crafted Unicode characters in terminal emulator

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28420

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28

vim-common CVE-2026-41411 中危 2:9.0.1378-2+deb12u2 vim: Vim: Command injection allows arbitrary code execution via malicious tag files

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41411

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-04-24 17:16 修改: 2026-06-17 10:46

vim-common CVE-2026-42307 中危 2:9.0.1378-2+deb12u2 Vim: Vim: Arbitrary code execution via OS command injection in netrw plugin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42307

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-08 23:16 修改: 2026-06-17 10:47

vim-common CVE-2026-43961 中危 2:9.0.1378-2+deb12u2

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43961

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

vim-common CVE-2026-44656 中危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary command execution via :find command-line completion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44656

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-08 23:16 修改: 2026-06-17 10:51

vim-common CVE-2026-45130 中危 2:9.0.1378-2+deb12u2 vim: Vim: Heap buffer overflow allows arbitrary code execution or denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45130

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-08 23:16 修改: 2026-06-17 10:51

vim-common CVE-2026-47167 中危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to version 9.2. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47167

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:54

vim-common CVE-2026-55892 中危 2:9.0.1378-2+deb12u2 vim: Vim: Denial of Service via crafted spell file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55892

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 19:16

vim-common CVE-2026-57451 中危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to 9.2.0670, ge ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57451

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 04:11

libexpat1 CVE-2026-56411 中危 2.5.0-1+deb12u2 expat: libexpat: Integer Overflow Vulnerability Leading to Information Disclosure or Code Execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56411

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-21 17:16 修改: 2026-06-23 16:16

libexpat1 CVE-2026-56412 中危 2.5.0-1+deb12u2 libexpat: libexpat: Use-after-free vulnerability due to improper handling of XML CDATA sections

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56412

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-21 17:16 修改: 2026-06-23 15:31

libgcrypt20 CVE-2026-41989 中危 1.10.1-3 1.10.1-3+deb12u1 Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-23 05:16 修改: 2026-06-17 10:47

curl CVE-2026-6253 中危 7.88.1-10+deb12u14 curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00

curl CVE-2026-6429 中危 7.88.1-10+deb12u14 curl: libcurl: Credential leak via reused proxy connection during HTTP redirects

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00

curl CVE-2026-7168 中危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:01

curl CVE-2026-8927 中危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

dirmngr CVE-2025-30258 中危 2.2.40-1.1+deb12u2 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

libgnutls30 CVE-2026-42011 中危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Security bypass due to incorrect name constraint handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-07 15:16 修改: 2026-06-30 03:19

libgnutls30 CVE-2026-42012 中危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-26 22:16 修改: 2026-06-30 03:19

libgnutls30 CVE-2026-42013 中危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-26 22:16 修改: 2026-06-30 03:19

libgnutls30 CVE-2026-42014 中危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Use-after-free in gnutls_pkcs11_token_set_pin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-16 02:16 修改: 2026-06-30 03:19

libgnutls30 CVE-2026-42015 中危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-26 22:16 修改: 2026-06-30 03:19

libgnutls30 CVE-2026-5260 中危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Information disclosure via heap overread in RSA key exchange

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-05-26 22:16 修改: 2026-06-30 03:21

dirmngr CVE-2025-68972 中危 2.2.40-1.1+deb12u2 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59

liblzma5 CVE-2026-34743 中危 5.4.1-1 xz: XZ Utils: Denial of Service via buffer overflow in index decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-02 19:21 修改: 2026-06-17 10:39

vim-tiny CVE-2025-29768 中危 2:9.0.1378-2+deb12u2 vim: Vim vulnerable to potential data loss with zip.vim and special crafted zip files

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29768

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-03-13 17:15 修改: 2026-06-17 09:05

vim-tiny CVE-2025-53905 中危 2:9.0.1378-2+deb12u2 vim: Vim path traversial

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53905

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-07-15 21:15 修改: 2026-06-17 09:39

vim-tiny CVE-2025-53906 中危 2:9.0.1378-2+deb12u2 vim: Vim path traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53906

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-07-15 21:15 修改: 2026-06-17 09:39

vim-tiny CVE-2026-25749 中危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via 'helpfile' option processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25749

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-06 23:15 修改: 2026-06-17 10:25

vim-tiny CVE-2026-28418 中危 2:9.0.1378-2+deb12u2 vim: Vim: Information disclosure via heap-based buffer overflow in Emacs-style tags file parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28418

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28

vim-tiny CVE-2026-28420 中危 2:9.0.1378-2+deb12u2 vim: Vim: Information disclosure and denial of service via crafted Unicode characters in terminal emulator

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28420

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28

vim-tiny CVE-2026-41411 中危 2:9.0.1378-2+deb12u2 vim: Vim: Command injection allows arbitrary code execution via malicious tag files

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41411

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-04-24 17:16 修改: 2026-06-17 10:46

vim-tiny CVE-2026-42307 中危 2:9.0.1378-2+deb12u2 Vim: Vim: Arbitrary code execution via OS command injection in netrw plugin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42307

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-08 23:16 修改: 2026-06-17 10:47

vim-tiny CVE-2026-43961 中危 2:9.0.1378-2+deb12u2

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43961

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

vim-tiny CVE-2026-44656 中危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary command execution via :find command-line completion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44656

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-08 23:16 修改: 2026-06-17 10:51

vim-tiny CVE-2026-45130 中危 2:9.0.1378-2+deb12u2 vim: Vim: Heap buffer overflow allows arbitrary code execution or denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45130

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-05-08 23:16 修改: 2026-06-17 10:51

vim-tiny CVE-2026-47167 中危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to version 9.2. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47167

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:54

vim-tiny CVE-2026-55892 中危 2:9.0.1378-2+deb12u2 vim: Vim: Denial of Service via crafted spell file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55892

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 19:16

vim-tiny CVE-2026-57451 中危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to 9.2.0670, ge ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57451

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 04:11

libmount1 CVE-2026-13595 中危 2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

zlib1g CVE-2026-27171 中危 1:1.2.13.dfsg-1 zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-02-18 04:16 修改: 2026-06-17 10:26

libssl3 CVE-2026-7383 低危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:02

libssl3 CVE-2026-9076 低危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:04

libstdc++6 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37

libsystemd0 CVE-2013-4392 低危 252.39-1~deb12u2 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13

libsystemd0 CVE-2023-31437 低危 252.39-1~deb12u2 An issue was discovered in systemd 253. An attacker can modify a seale ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56

libsystemd0 CVE-2023-31438 低危 252.39-1~deb12u2 An issue was discovered in systemd 253. An attacker can truncate a sea ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56

libsystemd0 CVE-2023-31439 低危 252.39-1~deb12u2 An issue was discovered in systemd 253. An attacker can modify the con ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56

libsystemd0 CVE-2026-40228 低危 252.39-1~deb12u2 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libtasn1-6 CVE-2025-13151 低危 4.19.0-2+deb12u1 libtasn1: libtasn1: Denial of Service via stack-based buffer overflow in asn1_expend_octet_string

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13151

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-01-07 22:15 修改: 2026-06-17 08:33

curl CVE-2026-8286 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

gpgsm CVE-2022-3219 低危 2.2.40-1.1+deb12u2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59

libtinfo6 CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01

libudev1 CVE-2013-4392 低危 252.39-1~deb12u2 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13

libudev1 CVE-2023-31437 低危 252.39-1~deb12u2 An issue was discovered in systemd 253. An attacker can modify a seale ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56

libudev1 CVE-2023-31438 低危 252.39-1~deb12u2 An issue was discovered in systemd 253. An attacker can truncate a sea ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56

libudev1 CVE-2023-31439 低危 252.39-1~deb12u2 An issue was discovered in systemd 253. An attacker can modify the con ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56

libudev1 CVE-2026-40228 低危 252.39-1~deb12u2 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

gpgsm CVE-2026-57062 低危 2.2.40-1.1+deb12u2 GnuPG: Incorrect cryptographic message parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-23 18:18 修改: 2026-06-25 20:16

curl CVE-2026-8458 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

curl CVE-2026-8924 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libuuid1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

libuuid1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

gpgv CVE-2022-3219 低危 2.2.40-1.1+deb12u2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59

gpgv CVE-2026-57062 低危 2.2.40-1.1+deb12u2 GnuPG: Incorrect cryptographic message parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-23 18:18 修改: 2026-06-25 20:16

libxml2 CVE-2025-8732 低危 2.9.14+dfsg-1.3~deb12u5 libxml2: libxml2: Uncontrolled Recursion Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8732

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-08-08 17:15 修改: 2026-06-29 19:05

libxml2 CVE-2026-0989 低危 2.9.14+dfsg-1.3~deb12u5 libxml2: Unbounded RelaxNG Include Recursion Leading to Stack Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0989

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-15 15:15 修改: 2026-06-29 19:05

libxml2 CVE-2026-0992 低危 2.9.14+dfsg-1.3~deb12u5 libxml2: libxml2: Denial of Service via crafted XML catalogs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0992

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-15 15:15 修改: 2026-06-29 19:03

libxml2 CVE-2026-11979 低危 2.9.14+dfsg-1.3~deb12u5 libxml2: libxml2: Arbitrary code execution in xmlcatalog utility via buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11979

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-29 14:16 修改: 2026-06-29 19:12

libxml2 CVE-2026-1757 低危 2.9.14+dfsg-1.3~deb12u5 libxml2: Memory Leak Leading to Local Denial of Service in xmllint Interactive Shell

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1757

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-02 13:15 修改: 2026-06-17 10:16

curl CVE-2026-9547 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libxslt1.1 CVE-2015-9019 低危 1.1.35-1+deb12u4 libxslt: math.random() in xslt uses unseeded randomness

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-9019

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2017-04-05 21:59 修改: 2026-05-13 00:24

libxslt1.1 CVE-2025-11731 低危 1.1.35-1+deb12u4 libxslt: Type Confusion in exsltFuncResultCompfunction of libxslt

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11731

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-10-14 06:15 修改: 2026-06-25 07:16

login CVE-2007-5686 低危 1:4.13+dfsg1-1+deb12u2 initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35

login CVE-2024-56433 低危 1:4.13+dfsg1-1+deb12u2 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12

login TEMP-0628843-DBAD28 低危 1:4.13+dfsg1-1+deb12u2 [more related to CVE-2005-4890]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

bsdutils CVE-2025-14104 低危 1:2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

coreutils CVE-2016-2781 低危 9.1-1 coreutils: Non-privileged session can escape to the parent session in chroot

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2017-02-07 15:59 修改: 2026-06-17 00:44

libapt-pkg6.0 CVE-2011-3374 低危 2.6.1 It was found that apt-key in apt, all versions, do not correctly valid ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30

mount CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

mount CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

libexpat1 CVE-2023-52426 低危 2.5.0-1+deb12u2 expat: recursive XML entity expansion vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52426

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-02-04 20:15 修改: 2026-06-17 06:42

nano CVE-2026-6842 低危 7.2-1+deb12u1 nano: nano: Local attacker can inject malicious .desktop launcher due to insecure directory permissions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6842

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-04-22 08:16 修改: 2026-06-17 11:01

libexpat1 CVE-2024-28757 低危 2.5.0-1+deb12u2 expat: XML Entity Expansion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28757

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-03-10 05:15 修改: 2026-06-17 07:21

libexpat1 CVE-2026-24515 低危 2.5.0-1+deb12u2 libexpat: libexpat null pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24515

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-23 08:16 修改: 2026-06-17 10:23

ncurses-base CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01

libexpat1 CVE-2026-41080 低危 2.5.0-1+deb12u2 libexpat: expat: libexpat: Denial of Service via hash flooding with crafted XML

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41080

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-04-16 17:16 修改: 2026-06-17 10:46

libgcc-s1 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37

ncurses-bin CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01

dirmngr CVE-2022-3219 低危 2.2.40-1.1+deb12u2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59

libgcrypt20 CVE-2018-6829 低危 1.10.1-3 libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2018-02-07 23:29 修改: 2026-06-17 02:02

libgcrypt20 CVE-2024-2236 低危 1.10.1-3 libgcrypt: vulnerable to Marvin Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2024-03-06 22:15 修改: 2026-06-17 07:24

libglib2.0-0 CVE-2012-0039 低危 2.74.6-2+deb12u9 glib2: hash table collisions CPU usage DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2012-0039

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2012-01-14 17:55 修改: 2026-04-29 01:13

dirmngr CVE-2026-57062 低危 2.2.40-1.1+deb12u2 GnuPG: Incorrect cryptographic message parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-23 18:18 修改: 2026-06-25 20:16

gcc-12-base CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37

git CVE-2018-1000021 低危 1:2.39.5-0+deb12u3 git: client prints server-sent ANSI escape codes to the terminal, allowing for unverified messages to potentially execute arbitrary commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000021

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2018-02-09 23:29 修改: 2026-06-17 01:32

libblkid1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

libblkid1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

nodejs CVE-2026-48617 低危 24.16.0-1nodesource1 A flaw in Node.js Permission Model enforcement allows Bypass via `proc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48617

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-18 17:16 修改: 2026-06-22 20:20

nodejs CVE-2026-48931 低危 24.16.0-1nodesource1 A flaw in Node.js HTTP Agent can cause a client to accept as valid a r ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48931

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-22 20:16 修改: 2026-06-23 15:16

nodejs CVE-2026-48935 低危 24.16.0-1nodesource1 nodejs: Node.js: Unauthorized file metadata modification

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48935

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-26 02:16 修改: 2026-06-26 20:14

git CVE-2022-24975 低危 1:2.39.5-0+deb12u3 git: The --mirror option for git leaks secret for deleted content, aka the "GitBleed"

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24975

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2022-02-11 20:15 修改: 2026-06-17 04:32

git CVE-2024-52005 低危 1:2.39.5-0+deb12u3 git: The sideband payload is passed unfiltered to the terminal in git

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52005

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-01-15 18:15 修改: 2026-06-17 08:06

git-man CVE-2018-1000021 低危 1:2.39.5-0+deb12u3 git: client prints server-sent ANSI escape codes to the terminal, allowing for unverified messages to potentially execute arbitrary commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000021

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2018-02-09 23:29 修改: 2026-06-17 01:32

openssl CVE-2025-27587 低危 3.0.20-1~deb12u1 OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2025-06-16 22:15 修改: 2026-06-17 09:03

openssl CVE-2026-34180 低危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38

openssl CVE-2026-42766 低危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: Possible NULL Dereference in Password-Based CMS Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

openssl CVE-2026-42767 低危 3.0.20-1~deb12u1 openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

openssl CVE-2026-42770 低危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: FFC-DH Peer Validation Uses Attacker-Supplied q

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

openssl CVE-2026-45446 低危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52

openssl CVE-2026-7383 低危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:02

openssl CVE-2026-9076 低危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:04

passwd CVE-2007-5686 低危 1:4.13+dfsg1-1+deb12u2 initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35

passwd CVE-2024-56433 低危 1:4.13+dfsg1-1+deb12u2 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12

passwd TEMP-0628843-DBAD28 低危 1:4.13+dfsg1-1+deb12u2 [more related to CVE-2005-4890]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

git-man CVE-2022-24975 低危 1:2.39.5-0+deb12u3 git: The --mirror option for git leaks secret for deleted content, aka the "GitBleed"

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24975

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2022-02-11 20:15 修改: 2026-06-17 04:32

git-man CVE-2024-52005 低危 1:2.39.5-0+deb12u3 git: The sideband payload is passed unfiltered to the terminal in git

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52005

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-01-15 18:15 修改: 2026-06-17 08:06

libc-bin CVE-2010-4756 低危 2.36-9+deb12u14 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13

libgnutls30 CVE-2011-3389 低危 3.7.9-2+deb12u6 HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2011-09-06 19:55 修改: 2026-04-29 01:13

libgnutls30 CVE-2026-5419 低危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5419

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-01 21:16 修改: 2026-06-29 12:16

libgssapi-krb5-2 CVE-2018-5709 低危 1.20.1-2+deb12u5 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00

libgssapi-krb5-2 CVE-2024-26458 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

libgssapi-krb5-2 CVE-2024-26461 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

libgssapi-krb5-2 CVE-2026-11850 低危 1.20.1-2+deb12u5 krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14

libk5crypto3 CVE-2018-5709 低危 1.20.1-2+deb12u5 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00

perl CVE-2011-4116 低危 5.36.0-7+deb12u3 perl: File:: Temp insecure temporary file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04

perl CVE-2023-31486 低危 5.36.0-7+deb12u3 http-tiny: perl: insecure TLS cert default

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-04-29 00:15 修改: 2026-06-17 05:57

libk5crypto3 CVE-2024-26458 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

libk5crypto3 CVE-2024-26461 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

libk5crypto3 CVE-2026-11850 低危 1.20.1-2+deb12u5 krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14

libkrb5-3 CVE-2018-5709 低危 1.20.1-2+deb12u5 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00

libkrb5-3 CVE-2024-26458 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

libkrb5-3 CVE-2024-26461 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

libkrb5-3 CVE-2026-11850 低危 1.20.1-2+deb12u5 krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14

libkrb5support0 CVE-2018-5709 低危 1.20.1-2+deb12u5 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00

libkrb5support0 CVE-2024-26458 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

libkrb5support0 CVE-2024-26461 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

perl-base CVE-2011-4116 低危 5.36.0-7+deb12u3 perl: File:: Temp insecure temporary file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04

perl-base CVE-2023-31486 低危 5.36.0-7+deb12u3 http-tiny: perl: insecure TLS cert default

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2023-04-29 00:15 修改: 2026-06-17 05:57

libkrb5support0 CVE-2026-11850 低危 1.20.1-2+deb12u5 krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14

libc-bin CVE-2018-20796 低危 2.36-9+deb12u14 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2019-02-26 02:29 修改: 2026-06-17 01:53

libldap-2.5-0 CVE-2015-3276 低危 2.5.13+dfsg-5 openldap: incorrect multi-keyword mode cipherstring parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2015-12-07 20:59 修改: 2026-05-06 22:30

libldap-2.5-0 CVE-2017-14159 低危 2.5.13+dfsg-5 openldap: Privilege escalation via PID file manipulation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2017-09-05 18:29 修改: 2026-06-17 01:05

libldap-2.5-0 CVE-2017-17740 低危 2.5.13+dfsg-5 openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2017-12-18 06:29 修改: 2026-06-17 01:11

libldap-2.5-0 CVE-2020-15719 低危 2.5.13+dfsg-5 openldap: Certificate validation incorrectly matches name against CN-ID

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2020-07-14 14:15 修改: 2026-06-17 02:57

libldap-2.5-0 CVE-2026-22185 低危 2.5.13+dfsg-5 OpenLDAP: OpenLDAP LMDB: Denial of Service and Information Disclosure via Heap Buffer Underflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22185

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-07 21:16 修改: 2026-06-17 10:19

libc-bin CVE-2019-1010022 低危 2.36-9+deb12u14 glibc: stack guard protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

libc-bin CVE-2019-1010023 低危 2.36-9+deb12u14 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

libc-bin CVE-2019-1010024 低危 2.36-9+deb12u14 glibc: ASLR bypass using cache of thread stack and heap

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

perl-modules-5.36 CVE-2011-4116 低危 5.36.0-7+deb12u3 perl: File:: Temp insecure temporary file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04

perl-modules-5.36 CVE-2023-31486 低危 5.36.0-7+deb12u3 http-tiny: perl: insecure TLS cert default

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-04-29 00:15 修改: 2026-06-17 05:57

procps CVE-2023-4016 低危 2:4.0.2-3 procps: ps buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-08-02 05:15 修改: 2026-06-17 06:36

libc-bin CVE-2019-1010025 低危 2.36-9+deb12u14 glibc: information disclosure of heap addresses of pthread_created thread

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

libmount1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

libmount1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

libc-bin CVE-2019-9192 低危 2.36-9+deb12u14 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2019-02-26 18:29 修改: 2026-06-17 02:43

coreutils CVE-2017-18018 低危 9.1-1 coreutils: race condition vulnerability in chown and chgrp

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2018-01-04 04:29 修改: 2026-06-17 01:12

libncursesw6 CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:09c914c62d6db278df1e2b9742a362358a1eea58a3c79ebf5165e841c43af0a4

发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01

coreutils CVE-2025-5278 低危 9.1-1 coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5278

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2025-05-27 21:15 修改: 2026-06-30 03:16

gnupg CVE-2022-3219 低危 2.2.40-1.1+deb12u2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59

gnupg CVE-2026-57062 低危 2.2.40-1.1+deb12u2 GnuPG: Incorrect cryptographic message parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-23 18:18 修改: 2026-06-25 20:16

libc6 CVE-2010-4756 低危 2.36-9+deb12u14 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13

libc6 CVE-2018-20796 低危 2.36-9+deb12u14 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2019-02-26 02:29 修改: 2026-06-17 01:53

libc6 CVE-2019-1010022 低危 2.36-9+deb12u14 glibc: stack guard protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

libc6 CVE-2019-1010023 低危 2.36-9+deb12u14 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

libc6 CVE-2019-1010024 低危 2.36-9+deb12u14 glibc: ASLR bypass using cache of thread stack and heap

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

libc6 CVE-2019-1010025 低危 2.36-9+deb12u14 glibc: information disclosure of heap addresses of pthread_created thread

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

libc6 CVE-2019-9192 低危 2.36-9+deb12u14 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2019-02-26 18:29 修改: 2026-06-17 02:43

apt CVE-2011-3374 低危 2.6.1 It was found that apt-key in apt, all versions, do not correctly valid ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30

python3.11 CVE-2025-13462 低危 3.11.2-6+deb12u7 cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34

python3.11 CVE-2026-12003 低危 3.11.2-6+deb12u7 To allow builds of Python to be run from an in-tree layout (rather tha ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12003

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-16 17:16 修改: 2026-06-23 18:17

python3.11 CVE-2026-2297 低危 3.11.2-6+deb12u7 cpython: CPython: Logging Bypass in Legacy .pyc File Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30

python3.11 CVE-2026-3479 低危 3.11.2-6+deb12u7 python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-18 19:16 修改: 2026-06-17 10:43

python3.11 CVE-2026-4519 低危 3.11.2-6+deb12u7 python: Python: Command-line option injection in webbrowser.open() via crafted URLs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-20 15:16 修改: 2026-06-30 03:20

apt-transport-https CVE-2011-3374 低危 2.6.1 It was found that apt-key in apt, all versions, do not correctly valid ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30

gnupg-l10n CVE-2022-3219 低危 2.2.40-1.1+deb12u2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59

gnupg-l10n CVE-2026-57062 低危 2.2.40-1.1+deb12u2 GnuPG: Incorrect cryptographic message parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-23 18:18 修改: 2026-06-25 20:16

bash TEMP-0841856-B18BAF 低危 5.2.15-2+b13 [Privilege escalation possible to other user than root]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

bsdutils CVE-2022-0563 低危 1:2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

gnupg-utils CVE-2022-3219 低危 2.2.40-1.1+deb12u2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59

gnupg-utils CVE-2026-57062 低危 2.2.40-1.1+deb12u2 GnuPG: Incorrect cryptographic message parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-23 18:18 修改: 2026-06-25 20:16

curl CVE-2024-2379 低危 7.88.1-10+deb12u14 curl: QUIC certificate check bypass with wolfSSL

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-03-27 08:15 修改: 2026-06-17 07:24

libperl5.36 CVE-2011-4116 低危 5.36.0-7+deb12u3 perl: File:: Temp insecure temporary file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04

libperl5.36 CVE-2023-31486 低危 5.36.0-7+deb12u3 http-tiny: perl: insecure TLS cert default

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-04-29 00:15 修改: 2026-06-17 05:57

libpng16-16 CVE-2021-4214 低危 1.6.39-2+deb12u5 libpng: hardcoded value leads to heap-overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4214

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2022-08-24 16:15 修改: 2026-06-17 04:19

libpng16-16 CVE-2025-28162 低危 1.6.39-2+deb12u5 libpng: libpng: Denial of Service via buffer overflow in pngimage utility

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-28162

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:04

libpng16-16 CVE-2025-28164 低危 1.6.39-2+deb12u5 libpng: libpng: Denial of Service via buffer overflow in png_create_read_struct() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-28164

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:04

libpng16-16 CVE-2026-3713 低危 1.6.39-2+deb12u5 libpng: libpng: Heap-based buffer overflow in pnm2png allows information disclosure and denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3713

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-03-08 06:16 修改: 2026-06-17 10:44

libproc2-0 CVE-2023-4016 低危 2:4.0.2-3 procps: ps buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-08-02 05:15 修改: 2026-06-17 06:36

curl CVE-2025-0725 低危 7.88.1-10+deb12u14 libcurl: Buffer Overflow in libcurl via zlib Integer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0725

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-02-05 10:15 修改: 2026-06-17 08:27

gpg CVE-2022-3219 低危 2.2.40-1.1+deb12u2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59

python3.11-minimal CVE-2025-13462 低危 3.11.2-6+deb12u7 cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34

python3.11-minimal CVE-2026-12003 低危 3.11.2-6+deb12u7 To allow builds of Python to be run from an in-tree layout (rather tha ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12003

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-16 17:16 修改: 2026-06-23 18:17

python3.11-minimal CVE-2026-2297 低危 3.11.2-6+deb12u7 cpython: CPython: Logging Bypass in Legacy .pyc File Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30

python3.11-minimal CVE-2026-3479 低危 3.11.2-6+deb12u7 python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-18 19:16 修改: 2026-06-17 10:43

python3.11-minimal CVE-2026-4519 低危 3.11.2-6+deb12u7 python: Python: Command-line option injection in webbrowser.open() via crafted URLs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-20 15:16 修改: 2026-06-30 03:20

sudo CVE-2005-1119 低危 1.9.13p3-1+deb12u4 Sudo VISudo 1.6.8 and earlier allows local users to corrupt arbitrary ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2005-1119

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2005-05-02 04:00 修改: 2026-04-16 00:27

sudo CVE-2023-42465 低危 1.9.13p3-1+deb12u4 sudo: Targeted Corruption of Register and Stack Variables

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42465

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-12-22 16:15 修改: 2026-06-17 06:23

sysvinit-utils TEMP-0517018-A83CE6 低危 3.06-4 [sysvinit: no-root option in expert installer exposes locally exploitable security flaw]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

gpg CVE-2026-57062 低危 2.2.40-1.1+deb12u2 GnuPG: Incorrect cryptographic message parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-23 18:18 修改: 2026-06-25 20:16

tar CVE-2005-2541 低危 1.34+dfsg-1.2+deb12u1 tar: does not properly warn the user when extracting setuid or setgid files

漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2005-08-10 04:00 修改: 2026-04-16 00:27

tar TEMP-0290435-0B57B5 低危 1.34+dfsg-1.2+deb12u1 [tar's rmt command may have undesired side effects]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

unzip CVE-2021-4217 低危 6.0-28 unzip: Null pointer dereference in Unicode strings code

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4217

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2022-08-24 16:15 修改: 2026-06-17 04:19

libcurl3-gnutls CVE-2024-2379 低危 7.88.1-10+deb12u14 curl: QUIC certificate check bypass with wolfSSL

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-03-27 08:15 修改: 2026-06-17 07:24

libcurl3-gnutls CVE-2025-0725 低危 7.88.1-10+deb12u14 libcurl: Buffer Overflow in libcurl via zlib Integer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0725

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-02-05 10:15 修改: 2026-06-17 08:27

libcurl3-gnutls CVE-2025-10148 低危 7.88.1-10+deb12u14 curl: predictable WebSocket mask

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10148

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-09-12 06:15 修改: 2026-06-17 08:27

util-linux CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

util-linux CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

libcurl3-gnutls CVE-2025-10966 低危 7.88.1-10+deb12u14 curl: Curl missing SFTP host verification with wolfSSH backend

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-11-07 08:15 修改: 2026-06-17 08:29

libcurl3-gnutls CVE-2025-14017 低危 7.88.1-10+deb12u14 curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:35

libcurl3-gnutls CVE-2025-14524 低危 7.88.1-10+deb12u14 curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36

util-linux-extra CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

util-linux-extra CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

libcurl3-gnutls CVE-2025-14819 低危 7.88.1-10+deb12u14 curl: libcurl: Improper certificate validation due to cached TLS settings reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36

libcurl3-gnutls CVE-2025-15079 低危 7.88.1-10+deb12u14 curl: Host verification bypass during SSH transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37

libcurl3-gnutls CVE-2025-15224 低危 7.88.1-10+deb12u14 curl: libssh key passphrase bypass without agent set

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37

libcurl3-gnutls CVE-2026-10536 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl3-gnutls CVE-2026-12064 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12064

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl3-gnutls CVE-2026-8286 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl3-gnutls CVE-2026-8458 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl3-gnutls CVE-2026-8924 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libpython3.11-minimal CVE-2025-13462 低危 3.11.2-6+deb12u7 cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34

libpython3.11-minimal CVE-2026-12003 低危 3.11.2-6+deb12u7 To allow builds of Python to be run from an in-tree layout (rather tha ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12003

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-16 17:16 修改: 2026-06-23 18:17

libpython3.11-minimal CVE-2026-2297 低危 3.11.2-6+deb12u7 cpython: CPython: Logging Bypass in Legacy .pyc File Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30

libpython3.11-minimal CVE-2026-3479 低危 3.11.2-6+deb12u7 python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-18 19:16 修改: 2026-06-17 10:43

libpython3.11-minimal CVE-2026-4519 低危 3.11.2-6+deb12u7 python: Python: Command-line option injection in webbrowser.open() via crafted URLs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-20 15:16 修改: 2026-06-30 03:20

libcurl3-gnutls CVE-2026-9547 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

curl CVE-2025-10148 低危 7.88.1-10+deb12u14 curl: predictable WebSocket mask

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10148

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-09-12 06:15 修改: 2026-06-17 08:27

curl CVE-2025-10966 低危 7.88.1-10+deb12u14 curl: Curl missing SFTP host verification with wolfSSH backend

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-11-07 08:15 修改: 2026-06-17 08:29

gpg-agent CVE-2022-3219 低危 2.2.40-1.1+deb12u2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59

gpg-agent CVE-2026-57062 低危 2.2.40-1.1+deb12u2 GnuPG: Incorrect cryptographic message parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-23 18:18 修改: 2026-06-25 20:16

curl CVE-2025-14017 低危 7.88.1-10+deb12u14 curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:35

curl CVE-2025-14524 低危 7.88.1-10+deb12u14 curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36

gpg-wks-client CVE-2022-3219 低危 2.2.40-1.1+deb12u2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59

gpg-wks-client CVE-2026-57062 低危 2.2.40-1.1+deb12u2 GnuPG: Incorrect cryptographic message parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-23 18:18 修改: 2026-06-25 20:16

curl CVE-2025-14819 低危 7.88.1-10+deb12u14 curl: libcurl: Improper certificate validation due to cached TLS settings reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36

curl CVE-2025-15079 低危 7.88.1-10+deb12u14 curl: Host verification bypass during SSH transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37

gpg-wks-server CVE-2022-3219 低危 2.2.40-1.1+deb12u2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59

gpg-wks-server CVE-2026-57062 低危 2.2.40-1.1+deb12u2 GnuPG: Incorrect cryptographic message parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-23 18:18 修改: 2026-06-25 20:16

libcurl4 CVE-2024-2379 低危 7.88.1-10+deb12u14 curl: QUIC certificate check bypass with wolfSSL

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-03-27 08:15 修改: 2026-06-17 07:24

libcurl4 CVE-2025-0725 低危 7.88.1-10+deb12u14 libcurl: Buffer Overflow in libcurl via zlib Integer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0725

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-02-05 10:15 修改: 2026-06-17 08:27

libcurl4 CVE-2025-10148 低危 7.88.1-10+deb12u14 curl: predictable WebSocket mask

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10148

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-09-12 06:15 修改: 2026-06-17 08:27

libcurl4 CVE-2025-10966 低危 7.88.1-10+deb12u14 curl: Curl missing SFTP host verification with wolfSSH backend

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-11-07 08:15 修改: 2026-06-17 08:29

vim-common CVE-2008-4677 低危 2:9.0.1378-2+deb12u2 vim: netrw plugin: FTP username and password disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2008-4677

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2008-10-22 18:00 修改: 2026-04-23 00:35

vim-common CVE-2017-1000382 低危 2:9.0.1378-2+deb12u2 vim: Ignores umask when creating a swap file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000382

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2017-10-31 20:29 修改: 2026-06-17 00:59

vim-common CVE-2023-1264 低危 2:9.0.1378-2+deb12u2 vim: NULL pointer dereference issue in utfc_ptr2len

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1264

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-03-07 22:15 修改: 2026-06-17 05:27

vim-common CVE-2023-1355 低危 2:9.0.1378-2+deb12u2 vim: null pointer dereference in class_object_index at vim9class.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1355

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-03-11 22:15 修改: 2026-06-17 05:27

vim-common CVE-2023-2609 低危 2:9.0.1378-2+deb12u2 vim: NULL Pointer Dereference in get_register() at register.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2609

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-05-09 18:15 修改: 2026-06-23 18:17

vim-common CVE-2023-3896 低危 2:9.0.1378-2+deb12u2 vim: Divide by zero in scroll_cursor_bot

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3896

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-08-07 13:15 修改: 2026-06-17 06:15

vim-common CVE-2023-46246 低危 2:9.0.1378-2+deb12u2 vim: Integer Overflow in :history command

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46246

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-10-27 19:15 修改: 2026-06-23 18:17

vim-common CVE-2023-4733 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in function buflist_altfpos

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4733

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-09-04 14:15 修改: 2026-06-23 18:17

vim-common CVE-2023-4734 低危 2:9.0.1378-2+deb12u2 vim: segmentation fault in function f_fullcommand in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4734

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-09-02 18:15 修改: 2026-06-23 18:17

vim-common CVE-2023-4735 低危 2:9.0.1378-2+deb12u2 vim: OOB Write ops.c in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4735

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-09-02 18:15 修改: 2026-06-23 18:17

vim-common CVE-2023-4750 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in function bt_quickfix

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4750

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-09-04 14:15 修改: 2026-06-23 18:17

vim-common CVE-2023-4751 低危 2:9.0.1378-2+deb12u2 vim: heap-buffer-overflow in function utfc_ptr2len in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4751

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-09-03 19:15 修改: 2026-06-17 06:38

vim-common CVE-2023-48231 低危 2:9.0.1378-2+deb12u2 vim: use after free in win_close()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48231

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17

vim-common CVE-2023-48232 低危 2:9.0.1378-2+deb12u2 vim: floating point exception in adjust_plines_for_skipcol()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48232

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17

vim-common CVE-2023-48233 低危 2:9.0.1378-2+deb12u2 vim: overflow with count for :s command

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48233

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17

vim-common CVE-2023-48234 低危 2:9.0.1378-2+deb12u2 vim: overflow in nv_z_get_count

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48234

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17

vim-common CVE-2023-48235 低危 2:9.0.1378-2+deb12u2 vim: overflow in ex address parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48235

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17

vim-common CVE-2023-48236 低危 2:9.0.1378-2+deb12u2 vim: overflow in get_number

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48236

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17

vim-common CVE-2023-48237 低危 2:9.0.1378-2+deb12u2 vim: buffer overflow in shift_line

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48237

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17

vim-common CVE-2023-48706 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in ex_substitute in Vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48706

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-22 22:15 修改: 2026-06-23 18:17

vim-common CVE-2023-5441 低危 2:9.0.1378-2+deb12u2 vim: NULL pointer dereference in screen_line() in src/screen.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5441

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-10-05 21:15 修改: 2026-06-17 06:48

vim-common CVE-2023-5535 低危 2:9.0.1378-2+deb12u2 vim: use after free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5535

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-10-11 20:15 修改: 2026-06-17 06:48

vim-common CVE-2024-41957 低危 2:9.0.1378-2+deb12u2 vim: Double-free/use-after-free vulnerability with Vim editor

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41957

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-08-01 22:15 修改: 2026-06-17 07:48

vim-common CVE-2024-41965 低危 2:9.0.1378-2+deb12u2 vim: Double-Free Vulnerability in Vim Could Cause Application Crashes

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41965

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-08-01 22:15 修改: 2026-06-17 07:48

vim-common CVE-2024-43374 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in alist_add() in src/arglist.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43374

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-08-16 02:15 修改: 2026-06-17 07:50

vim-common CVE-2024-43790 低危 2:9.0.1378-2+deb12u2 vim: Out of bounds read when performing a search command

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43790

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-08-22 22:15 修改: 2026-06-17 07:51

vim-common CVE-2025-1215 低危 2:9.0.1378-2+deb12u2 vim: vim main.c memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1215

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-02-12 19:15 修改: 2026-06-17 08:38

vim-common CVE-2025-22134 低危 2:9.0.1378-2+deb12u2 vim: heap-buffer-overflow with visual mode in Vim < 9.1.1003

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22134

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-01-13 21:15 修改: 2026-06-17 08:45

vim-common CVE-2025-24014 低危 2:9.0.1378-2+deb12u2 vim: segmentation fault in win_line() in Vim < 9.1.1043

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24014

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-01-20 23:15 修改: 2026-06-17 08:57

vim-common CVE-2025-26603 低危 2:9.0.1378-2+deb12u2 vim: heap-use-after-free in function str_to_reg in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-26603

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-02-18 19:15 修改: 2026-06-17 09:02

vim-common CVE-2026-28419 低危 2:9.0.1378-2+deb12u2 vim: Vim: Information disclosure and denial of service via malformed tags file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28419

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28

vim-common CVE-2026-28422 低危 2:9.0.1378-2+deb12u2 vim: Vim: Integrity impact due to stack-buffer-overflow via wide terminal statusline rendering

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28422

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28

vim-common CVE-2026-52859 低危 2:9.0.1378-2+deb12u2 vim: Vim: Denial of Service via out-of-bounds write in terminal handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-52859

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:57

libpython3.11-stdlib CVE-2025-13462 低危 3.11.2-6+deb12u7 cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34

libpython3.11-stdlib CVE-2026-12003 低危 3.11.2-6+deb12u7 To allow builds of Python to be run from an in-tree layout (rather tha ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12003

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-16 17:16 修改: 2026-06-23 18:17

libpython3.11-stdlib CVE-2026-2297 低危 3.11.2-6+deb12u7 cpython: CPython: Logging Bypass in Legacy .pyc File Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30

libpython3.11-stdlib CVE-2026-3479 低危 3.11.2-6+deb12u7 python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-18 19:16 修改: 2026-06-17 10:43

libpython3.11-stdlib CVE-2026-4519 低危 3.11.2-6+deb12u7 python: Python: Command-line option injection in webbrowser.open() via crafted URLs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-20 15:16 修改: 2026-06-30 03:20

libcurl4 CVE-2025-14017 低危 7.88.1-10+deb12u14 curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:35

libcurl4 CVE-2025-14524 低危 7.88.1-10+deb12u14 curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36

libcurl4 CVE-2025-14819 低危 7.88.1-10+deb12u14 curl: libcurl: Improper certificate validation due to cached TLS settings reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36

libsmartcols1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

libsmartcols1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

libcurl4 CVE-2025-15079 低危 7.88.1-10+deb12u14 curl: Host verification bypass during SSH transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37

libcurl4 CVE-2025-15224 低危 7.88.1-10+deb12u14 curl: libssh key passphrase bypass without agent set

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37

libcurl4 CVE-2026-10536 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl4 CVE-2026-12064 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12064

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libsqlite3-0 CVE-2021-45346 低危 3.40.1-2+deb12u2 sqlite: crafted SQL query allows a malicious user to obtain sensitive information

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45346

镜像层: sha256:09c914c62d6db278df1e2b9742a362358a1eea58a3c79ebf5165e841c43af0a4

发布日期: 2022-02-14 19:15 修改: 2026-06-17 04:13

libsqlite3-0 CVE-2025-29088 低危 3.40.1-2+deb12u2 sqlite: Denial of Service in SQLite

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29088

镜像层: sha256:09c914c62d6db278df1e2b9742a362358a1eea58a3c79ebf5165e841c43af0a4

发布日期: 2025-04-10 14:15 修改: 2026-06-17 09:05

libsqlite3-0 CVE-2025-70873 低危 3.40.1-2+deb12u2 sqlite: SQLite: Information Disclosure via Crafted ZIP File

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-70873

镜像层: sha256:09c914c62d6db278df1e2b9742a362358a1eea58a3c79ebf5165e841c43af0a4

发布日期: 2026-03-12 19:16 修改: 2026-06-17 10:03

libcurl4 CVE-2026-8286 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl4 CVE-2026-8458 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl4 CVE-2026-8924 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl4 CVE-2026-9547 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

curl CVE-2025-15224 低危 7.88.1-10+deb12u14 curl: libssh key passphrase bypass without agent set

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37

curl CVE-2026-10536 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

gpgconf CVE-2022-3219 低危 2.2.40-1.1+deb12u2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59

gpgconf CVE-2026-57062 低危 2.2.40-1.1+deb12u2 GnuPG: Incorrect cryptographic message parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-23 18:18 修改: 2026-06-25 20:16

curl CVE-2026-12064 低危 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12064

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libssl3 CVE-2025-27587 低危 3.0.20-1~deb12u1 OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2025-06-16 22:15 修改: 2026-06-17 09:03

libssl3 CVE-2026-34180 低危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38

libssl3 CVE-2026-42766 低危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: Possible NULL Dereference in Password-Based CMS Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

libssl3 CVE-2026-42767 低危 3.0.20-1~deb12u1 openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

vim-tiny CVE-2008-4677 低危 2:9.0.1378-2+deb12u2 vim: netrw plugin: FTP username and password disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2008-4677

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2008-10-22 18:00 修改: 2026-04-23 00:35

vim-tiny CVE-2017-1000382 低危 2:9.0.1378-2+deb12u2 vim: Ignores umask when creating a swap file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000382

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2017-10-31 20:29 修改: 2026-06-17 00:59

vim-tiny CVE-2023-1264 低危 2:9.0.1378-2+deb12u2 vim: NULL pointer dereference issue in utfc_ptr2len

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1264

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-03-07 22:15 修改: 2026-06-17 05:27

vim-tiny CVE-2023-1355 低危 2:9.0.1378-2+deb12u2 vim: null pointer dereference in class_object_index at vim9class.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1355

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-03-11 22:15 修改: 2026-06-17 05:27

vim-tiny CVE-2023-2609 低危 2:9.0.1378-2+deb12u2 vim: NULL Pointer Dereference in get_register() at register.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2609

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-05-09 18:15 修改: 2026-06-23 18:17

vim-tiny CVE-2023-3896 低危 2:9.0.1378-2+deb12u2 vim: Divide by zero in scroll_cursor_bot

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3896

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-08-07 13:15 修改: 2026-06-17 06:15

vim-tiny CVE-2023-46246 低危 2:9.0.1378-2+deb12u2 vim: Integer Overflow in :history command

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46246

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-10-27 19:15 修改: 2026-06-23 18:17

vim-tiny CVE-2023-4733 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in function buflist_altfpos

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4733

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-09-04 14:15 修改: 2026-06-23 18:17

vim-tiny CVE-2023-4734 低危 2:9.0.1378-2+deb12u2 vim: segmentation fault in function f_fullcommand in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4734

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-09-02 18:15 修改: 2026-06-23 18:17

vim-tiny CVE-2023-4735 低危 2:9.0.1378-2+deb12u2 vim: OOB Write ops.c in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4735

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-09-02 18:15 修改: 2026-06-23 18:17

vim-tiny CVE-2023-4750 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in function bt_quickfix

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4750

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-09-04 14:15 修改: 2026-06-23 18:17

vim-tiny CVE-2023-4751 低危 2:9.0.1378-2+deb12u2 vim: heap-buffer-overflow in function utfc_ptr2len in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4751

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-09-03 19:15 修改: 2026-06-17 06:38

vim-tiny CVE-2023-48231 低危 2:9.0.1378-2+deb12u2 vim: use after free in win_close()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48231

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17

vim-tiny CVE-2023-48232 低危 2:9.0.1378-2+deb12u2 vim: floating point exception in adjust_plines_for_skipcol()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48232

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17

vim-tiny CVE-2023-48233 低危 2:9.0.1378-2+deb12u2 vim: overflow with count for :s command

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48233

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17

vim-tiny CVE-2023-48234 低危 2:9.0.1378-2+deb12u2 vim: overflow in nv_z_get_count

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48234

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17

vim-tiny CVE-2023-48235 低危 2:9.0.1378-2+deb12u2 vim: overflow in ex address parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48235

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17

vim-tiny CVE-2023-48236 低危 2:9.0.1378-2+deb12u2 vim: overflow in get_number

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48236

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17

vim-tiny CVE-2023-48237 低危 2:9.0.1378-2+deb12u2 vim: buffer overflow in shift_line

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48237

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17

vim-tiny CVE-2023-48706 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in ex_substitute in Vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48706

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-11-22 22:15 修改: 2026-06-23 18:17

vim-tiny CVE-2023-5441 低危 2:9.0.1378-2+deb12u2 vim: NULL pointer dereference in screen_line() in src/screen.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5441

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-10-05 21:15 修改: 2026-06-17 06:48

vim-tiny CVE-2023-5535 低危 2:9.0.1378-2+deb12u2 vim: use after free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5535

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2023-10-11 20:15 修改: 2026-06-17 06:48

vim-tiny CVE-2024-41957 低危 2:9.0.1378-2+deb12u2 vim: Double-free/use-after-free vulnerability with Vim editor

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41957

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-08-01 22:15 修改: 2026-06-17 07:48

vim-tiny CVE-2024-41965 低危 2:9.0.1378-2+deb12u2 vim: Double-Free Vulnerability in Vim Could Cause Application Crashes

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41965

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-08-01 22:15 修改: 2026-06-17 07:48

vim-tiny CVE-2024-43374 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in alist_add() in src/arglist.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43374

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-08-16 02:15 修改: 2026-06-17 07:50

vim-tiny CVE-2024-43790 低危 2:9.0.1378-2+deb12u2 vim: Out of bounds read when performing a search command

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43790

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2024-08-22 22:15 修改: 2026-06-17 07:51

vim-tiny CVE-2025-1215 低危 2:9.0.1378-2+deb12u2 vim: vim main.c memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1215

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-02-12 19:15 修改: 2026-06-17 08:38

vim-tiny CVE-2025-22134 低危 2:9.0.1378-2+deb12u2 vim: heap-buffer-overflow with visual mode in Vim < 9.1.1003

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22134

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-01-13 21:15 修改: 2026-06-17 08:45

vim-tiny CVE-2025-24014 低危 2:9.0.1378-2+deb12u2 vim: segmentation fault in win_line() in Vim < 9.1.1043

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24014

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-01-20 23:15 修改: 2026-06-17 08:57

vim-tiny CVE-2025-26603 低危 2:9.0.1378-2+deb12u2 vim: heap-use-after-free in function str_to_reg in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-26603

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2025-02-18 19:15 修改: 2026-06-17 09:02

vim-tiny CVE-2026-28419 低危 2:9.0.1378-2+deb12u2 vim: Vim: Information disclosure and denial of service via malformed tags file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28419

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28

vim-tiny CVE-2026-28422 低危 2:9.0.1378-2+deb12u2 vim: Vim: Integrity impact due to stack-buffer-overflow via wide terminal statusline rendering

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28422

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28

vim-tiny CVE-2026-52859 低危 2:9.0.1378-2+deb12u2 vim: Vim: Denial of Service via out-of-bounds write in terminal handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-52859

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:57

zip CVE-2018-13410 低危 3.0-13 Info-ZIP Zip 3.0, when the -T and -TT command-line options are used, a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-13410

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2018-07-06 19:29 修改: 2026-06-17 01:39

libssl3 CVE-2026-42770 低危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: FFC-DH Peer Validation Uses Attacker-Supplied q

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

libssl3 CVE-2026-45446 低危 3.0.20-1~deb12u1 3.0.20-1~deb12u2 openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446

镜像层: sha256:7a1171735f8e5ec6b178069c8a9120820a5d5acae5813fbc66c81c6d821609fa

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52

curl CVE-2026-8932 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8932

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

bsdutils CVE-2026-53613 未知 1:2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl4 CVE-2026-8932 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8932

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl3-gnutls CVE-2026-8932 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8932

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

gzip CVE-2026-41992 未知 1.12-1 GNU gzip contains a global buffer overflow vulnerability in the LZH de ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41992

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 2026-06-29 12:16 修改: 2026-06-29 19:12

bsdutils CVE-2026-53615 未知 1:2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libblkid1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libexpat1 CVE-2026-56131 未知 2.5.0-1+deb12u2 libexpat before 2.8.2 lacks handler call depth tracking for calls to X ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56131

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-19 06:17 修改: 2026-06-23 20:15

libexpat1 CVE-2026-56407 未知 2.5.0-1+deb12u2 libexpat before 2.8.2 has an integer overflow in doProlog that is rela ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56407

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:28

libmount1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libuuid1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

vim-common CVE-2026-57452 未知 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to 9.2.0671, wh ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57452

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 04:12

mount CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

mount CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libuuid1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

util-linux CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

util-linux CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libmount1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libexpat1 CVE-2026-56408 未知 2.5.0-1+deb12u2 libexpat before 2.8.2 has an integer overflow in copyString.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56408

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:27

libexpat1 CVE-2026-56409 未知 2.5.0-1+deb12u2 xmlwf in libexpat before 2.8.2 has an integer overflow for the output ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56409

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:21

libblkid1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libnghttp2-14 CVE-2026-58055 未知 1.52.0-1+deb12u3 nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade re ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58055

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-28 02:16 修改: 2026-06-29 19:27

util-linux-extra CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

vim-tiny CVE-2026-57452 未知 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to 9.2.0671, wh ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57452

镜像层: sha256:2d9b731b7301b621d73eb06d6fb8fb57efc0375ef03df7f895e81441ed5a45d6

发布日期: 2026-06-25 16:16 修改: 2026-06-26 04:12

util-linux-extra CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libsmartcols1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libsmartcols1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:b2008ac19409fa6fee4b52596271400498aebd0be04dffac5351bd1dcf230f2a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

Node.js (node-pkg)
低危漏洞:12 中危漏洞:24 高危漏洞:27 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
form-data CVE-2026-12143 高危 4.0.5 2.5.6, 3.0.5, 4.0.6 form-data: form-data: Form field override via CRLF injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12143

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-12 19:16 修改: 2026-06-30 03:17

minimatch CVE-2026-26996 高危 10.1.1 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-27903 高危 10.1.1 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 10.1.1 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

path-to-regexp CVE-2024-45296 高危 6.1.0 1.9.0, 0.1.10, 8.0.0, 3.3.0, 6.3.0 path-to-regexp: Backtracking regular expressions cause ReDoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45296

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2024-09-09 19:15 修改: 2026-06-17 07:53

path-to-regexp CVE-2024-45296 高危 6.1.0 1.9.0, 0.1.10, 8.0.0, 3.3.0, 6.3.0 path-to-regexp: Backtracking regular expressions cause ReDoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45296

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2024-09-09 19:15 修改: 2026-06-17 07:53

path-to-regexp CVE-2026-4926 高危 8.2.0 8.4.0 path-to-regexp: path-to-regexp: Denial of Service via crafted regular expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4926

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-26 19:17 修改: 2026-06-30 03:20

path-to-regexp CVE-2026-4926 高危 8.3.0 8.4.0 path-to-regexp: path-to-regexp: Denial of Service via crafted regular expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4926

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-26 19:17 修改: 2026-06-30 03:20

pnpm CVE-2026-55487 高危 11.5.2 10.34.2, 11.5.3 pnpm: Manifest identity spoof satisfies allowBuilds and runs attacker lifecycle

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55487

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-25 18:16 修改: 2026-06-29 21:16

pnpm CVE-2026-55697 高危 11.5.2 11.5.3 pnpm: Repository-controlled configDependencies can select a pacquet native install engine

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55697

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-25 18:16 修改: 2026-06-29 16:16

pnpm CVE-2026-55698 高危 11.5.2 10.34.2, 11.5.3 pnpm: Project env lockfile can short-circuit package-manager resolution and execute lockfile-selected pnpm bytes

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55698

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-25 18:16 修改: 2026-06-26 05:16

pnpm CVE-2026-55700 高危 11.5.2 11.5.3 pnpm: `stage download` writes outside its destination directory via manifest name/version traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55700

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-25 18:16 修改: 2026-06-29 21:16

pnpm GHSA-72r4-9c5j-mj57 高危 11.5.2 10.34.4, 11.7.0 pnpm: `patch-remove` could delete project-selected files outside the patches directory

漏洞详情: https://github.com/advisories/GHSA-72r4-9c5j-mj57

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-27 00:12 修改: 2026-06-27 00:12

pnpm GHSA-fr4h-3cph-29xv 高危 11.5.2 10.34.4, 11.7.0 pnpm: Hoisted install imports lockfile alias outside node_modules

漏洞详情: https://github.com/advisories/GHSA-fr4h-3cph-29xv

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-27 00:02 修改: 2026-06-27 00:03

pnpm GHSA-qrv3-253h-g69c 高危 11.5.2 10.34.4, 11.8.0 pnpm: Path traversal in configDependencies env lockfile allows symlink creation outside node_modules/.pnpm-config

漏洞详情: https://github.com/advisories/GHSA-qrv3-253h-g69c

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-27 00:13 修改: 2026-06-27 00:13

tar CVE-2026-26960 高危 7.5.7 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-02-20 02:16 修改: 2026-06-17 10:26

tar CVE-2026-29786 高危 7.5.7 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-07 16:15 修改: 2026-06-30 03:18

tar CVE-2026-31802 高危 7.5.7 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34

undici CVE-2026-12151 高危 5.28.4 6.27.0, 7.28.0, 8.5.0 undici: undici: Denial of Service due to unbounded memory growth via WebSocket frames

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12151

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 17:16 修改: 2026-06-30 03:17

undici CVE-2026-1526 高危 5.28.4 6.24.0, 7.24.0 undici: undici: Denial of Service via unbounded memory consumption during WebSocket permessage-deflate decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1526

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-12 21:16 修改: 2026-06-30 03:17

undici CVE-2026-2229 高危 5.28.4 6.24.0, 7.24.0 undici: Undici: Denial of Service via invalid WebSocket permessage-deflate extension parameter

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2229

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-12 21:16 修改: 2026-06-30 03:18

undici CVE-2026-12151 高危 6.25.0 6.27.0, 7.28.0, 8.5.0 undici: undici: Denial of Service due to unbounded memory growth via WebSocket frames

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12151

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 17:16 修改: 2026-06-30 03:17

undici CVE-2026-12151 高危 6.26.0 6.27.0, 7.28.0, 8.5.0 undici: undici: Denial of Service due to unbounded memory growth via WebSocket frames

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12151

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 17:16 修改: 2026-06-30 03:17

undici CVE-2026-12151 高危 6.26.0 6.27.0, 7.28.0, 8.5.0 undici: undici: Denial of Service due to unbounded memory growth via WebSocket frames

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12151

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 17:16 修改: 2026-06-30 03:17

undici CVE-2026-12151 高危 7.27.2 6.27.0, 7.28.0, 8.5.0 undici: undici: Denial of Service due to unbounded memory growth via WebSocket frames

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12151

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 17:16 修改: 2026-06-30 03:17

undici CVE-2026-6734 高危 7.27.2 7.28.0, 8.2.0 undici: undici: Information disclosure and data integrity issues due to incorrect Socks5ProxyAgent connection routing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6734

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:18 修改: 2026-06-30 03:21

undici CVE-2026-9697 高危 7.27.2 7.28.0, 8.5.0 undici: undici: Man-in-the-Middle attack via ignored TLS options with SOCKS5 proxy

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9697

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:18 修改: 2026-06-30 03:21

tar CVE-2026-53655 中危 7.5.15 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

@sigstore/core CVE-2026-48758 中危 3.2.0 3.2.1 @sigstore/core has DSSE payloadType type-binding failure

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48758

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

ip-address CVE-2026-42338 中危 10.1.0 10.1.1 ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42338

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-05-12 20:16 修改: 2026-06-30 03:19

js-yaml CVE-2026-53550 中危 4.1.1 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

tar CVE-2026-53655 中危 7.5.7 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

ajv CVE-2025-69873 中危 8.6.3 8.18.0, 6.14.0 ajv: ReDoS via $data reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69873

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-02-11 19:15 修改: 2026-06-30 05:17

path-to-regexp CVE-2026-4923 中危 8.2.0 8.4.0 path-to-regexp: path-to-regexp: Denial of Service via specially crafted paths with multiple wildcards

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4923

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-26 19:17 修改: 2026-06-17 10:57

brace-expansion CVE-2026-45149 中危 5.0.5 5.0.6 brace-expansion: brace-expansion: Denial of Service due to excessive memory allocation when expanding large numeric ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45149

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-05-29 20:16 修改: 2026-06-17 10:51

undici CVE-2025-22150 中危 5.28.4 5.28.5, 6.21.1, 7.2.3 undici: Undici Uses Insufficiently Random Values

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22150

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2025-01-21 18:15 修改: 2026-06-17 08:45

undici CVE-2026-1525 中危 5.28.4 6.24.0, 7.24.0 undici: Undici: HTTP Request Smuggling and Denial of Service due to duplicate Content-Length headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1525

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-12 20:16 修改: 2026-06-17 10:15

undici CVE-2026-1527 中危 5.28.4 6.24.0, 7.24.0 undici: Undici: HTTP header injection and request smuggling vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1527

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-12 21:16 修改: 2026-06-17 10:16

undici CVE-2026-22036 中危 5.28.4 7.18.2, 6.23.0 undici: Undici: Denial of Service via excessive decompression steps

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22036

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-01-14 19:16 修改: 2026-06-17 10:19

undici CVE-2026-9679 中危 5.28.4 6.27.0, 7.28.0, 8.5.0 undici: undici vulnerable to HTTP header injection via Set-Cookie percent-decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9679

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:18 修改: 2026-06-25 17:43

path-to-regexp CVE-2026-4923 中危 8.3.0 8.4.0 path-to-regexp: path-to-regexp: Denial of Service via specially crafted paths with multiple wildcards

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4923

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-26 19:17 修改: 2026-06-17 10:57

undici CVE-2026-9679 中危 6.25.0 6.27.0, 7.28.0, 8.5.0 undici: undici vulnerable to HTTP header injection via Set-Cookie percent-decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9679

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:18 修改: 2026-06-25 17:43

pnpm CVE-2026-55180 中危 11.5.2 10.34.2, 11.5.3 pnpm: Repository config can expand victim environment secrets into registry requests before scripts run

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55180

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-25 18:16 修改: 2026-06-29 21:16

pnpm CVE-2026-55699 中危 11.5.2 10.34.2, 11.5.3 pnpm: Reserved bin name deletes PNPM_HOME during global remove

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55699

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-25 18:16 修改: 2026-06-29 21:16

undici CVE-2026-9679 中危 6.26.0 6.27.0, 7.28.0, 8.5.0 undici: undici vulnerable to HTTP header injection via Set-Cookie percent-decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9679

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:18 修改: 2026-06-25 17:43

undici CVE-2026-9679 中危 6.26.0 6.27.0, 7.28.0, 8.5.0 undici: undici vulnerable to HTTP header injection via Set-Cookie percent-decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9679

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:18 修改: 2026-06-25 17:43

smol-toml GHSA-v3rj-xjv7-4jmq 中危 1.5.2 1.6.1 smol-toml: Denial of Service via TOML documents containing thousands of consecutive commented lines

漏洞详情: https://github.com/advisories/GHSA-v3rj-xjv7-4jmq

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-25 21:03 修改: 2026-03-25 21:03

srvx CVE-2026-33732 中危 0.8.9 0.11.13 srvx is vulnerable to middleware bypass via absolute URI in request line

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33732

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-26 18:16 修改: 2026-06-17 10:38

tar CVE-2026-53655 中危 7.5.13 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

undici CVE-2026-9678 中危 7.27.2 7.28.0, 8.5.0 undici: Undici: Information disclosure due to improper cache-control header parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9678

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:18 修改: 2026-06-25 17:44

undici CVE-2026-9679 中危 7.27.2 6.27.0, 7.28.0, 8.5.0 undici: undici vulnerable to HTTP header injection via Set-Cookie percent-decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9679

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:18 修改: 2026-06-25 17:43

undici CVE-2025-47279 低危 5.28.4 5.29.0, 6.21.2, 7.5.0 undici: Undici Memory Leak with Invalid Certificates

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47279

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2025-05-15 18:15 修改: 2026-06-17 09:27

undici CVE-2026-11525 低危 6.26.0 6.27.0, 7.28.0, 8.5.0 undici: undici: Weakening of cookie SameSite policy due to incorrect parsing of Set-Cookie header

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11525

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:17 修改: 2026-06-25 17:46

undici CVE-2026-11525 低危 6.26.0 6.27.0, 7.28.0, 8.5.0 undici: undici: Weakening of cookie SameSite policy due to incorrect parsing of Set-Cookie header

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11525

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:17 修改: 2026-06-25 17:46

undici CVE-2026-6733 低危 6.26.0 6.27.0, 7.28.0, 8.5.0 undici: Undici: Response queue poisoning on reused keep-alive sockets can lead to incorrect response delivery.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6733

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:18 修改: 2026-06-27 23:46

undici CVE-2026-6733 低危 6.26.0 6.27.0, 7.28.0, 8.5.0 undici: Undici: Response queue poisoning on reused keep-alive sockets can lead to incorrect response delivery.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6733

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:18 修改: 2026-06-27 23:46

undici CVE-2026-11525 低危 6.25.0 6.27.0, 7.28.0, 8.5.0 undici: undici: Weakening of cookie SameSite policy due to incorrect parsing of Set-Cookie header

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11525

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:17 修改: 2026-06-25 17:46

undici CVE-2026-6733 低危 6.25.0 6.27.0, 7.28.0, 8.5.0 undici: Undici: Response queue poisoning on reused keep-alive sockets can lead to incorrect response delivery.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6733

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:18 修改: 2026-06-27 23:46

undici CVE-2026-11525 低危 5.28.4 6.27.0, 7.28.0, 8.5.0 undici: undici: Weakening of cookie SameSite policy due to incorrect parsing of Set-Cookie header

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11525

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:17 修改: 2026-06-25 17:46

undici CVE-2026-6733 低危 5.28.4 6.27.0, 7.28.0, 8.5.0 undici: Undici: Response queue poisoning on reused keep-alive sockets can lead to incorrect response delivery.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6733

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:18 修改: 2026-06-27 23:46

@tootallnate/once CVE-2026-3449 低危 2.0.0 3.0.1, 2.0.1 @tootallnate/once: @tootallnate/once: Denial of Service due to incorrect control flow scoping with AbortSignal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3449

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-03-03 05:17 修改: 2026-06-17 10:43

undici CVE-2026-11525 低危 7.27.2 6.27.0, 7.28.0, 8.5.0 undici: undici: Weakening of cookie SameSite policy due to incorrect parsing of Set-Cookie header

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11525

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:17 修改: 2026-06-25 17:46

undici CVE-2026-6733 低危 7.27.2 6.27.0, 7.28.0, 8.5.0 undici: Undici: Response queue poisoning on reused keep-alive sockets can lead to incorrect response delivery.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6733

镜像层: sha256:0ce83077edb6fe92847e611f012b6c679adad768eec6b0b76cb1fdeaf085e7dd

发布日期: 2026-06-17 18:18 修改: 2026-06-27 23:46

Python (python-pkg)
低危漏洞:8 中危漏洞:38 高危漏洞:20 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
cryptography CVE-2026-26007 高危 46.0.3 46.0.5 cryptography: cryptography Subgroup Attack Due to Missing Subgroup Validation for SECT Curves

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26007

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-02-10 22:17 修改: 2026-06-30 03:17

cryptography GHSA-537c-gmf6-5ccf 高危 46.0.3 48.0.1 Vulnerable OpenSSL included in cryptography wheels

漏洞详情: https://github.com/advisories/GHSA-537c-gmf6-5ccf

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-15 20:12 修改: 2026-06-15 20:12

lxml CVE-2026-41066 高危 6.0.2 6.1.0 lxml: python: lxml: Information disclosure via untrusted XML input leading to local file read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41066

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-04-24 17:16 修改: 2026-06-17 10:46

pillow CVE-2026-25990 高危 11.3.0 12.1.1 pillow: Pillow: Out-of-bounds Write via Specially Crafted PSD Image

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25990

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-02-11 21:16 修改: 2026-06-30 03:17

pillow CVE-2026-40192 高危 11.3.0 12.2.0 Pillow: Pillow: Denial of Service via decompression bomb in FITS image processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40192

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-04-15 23:16 修改: 2026-06-30 03:19

pillow CVE-2026-42311 高危 11.3.0 12.2.0 Pillow is a Python imaging library. From version 10.3.0 to before vers ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42311

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-05-09 06:16 修改: 2026-06-17 10:47

python-multipart CVE-2026-24486 高危 0.0.20 0.0.22 python-multipart: Python-Multipart: Arbitrary file write via path traversal vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24486

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-01-27 01:16 修改: 2026-06-30 03:17

python-multipart CVE-2026-42561 高危 0.0.20 0.0.27 python-multipart: python-multipart: Denial of Service via excessive multipart part headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42561

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-05-13 21:16 修改: 2026-06-30 03:19

python-multipart CVE-2026-53539 高危 0.0.20 0.0.30 Python-Multipart is a streaming multipart parser for Python. Prior to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53539

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-22 18:16 修改: 2026-06-26 19:50

starlette CVE-2025-62727 高危 0.48.0 0.49.1 starlette: Starlette DoS via Range header merging

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-62727

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2025-10-28 21:15 修改: 2026-06-17 09:52

starlette CVE-2026-48818 高危 0.48.0 1.1.0 starlette: Starlette: SSRF and NTLM credential theft via UNC paths in StaticFiles on Windows

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48818

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-17 19:18 修改: 2026-06-30 03:20

starlette CVE-2026-54283 高危 0.48.0 1.3.1 Starlette is a lightweight ASGI framework/toolkit. From 0.4.1 until 1. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54283

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-22 18:16 修改: 2026-06-26 19:16

tornado CVE-2026-31958 高危 6.5.2 6.5.5 tornado-python: Tornado: Denial of Service via large multipart bodies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31958

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-03-11 20:16 修改: 2026-06-17 10:34

tornado CVE-2026-35536 高危 6.5.2 6.5.5 tornado: Tornado: Cookie attribute injection due to improper handling of cookie arguments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35536

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-04-03 04:16 修改: 2026-06-17 10:40

tornado CVE-2026-49853 高危 6.5.2 6.5.6 Tornado: Authorization header forwarded across cross-origin redirects in SimpleAsyncHTTPClient

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49853

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

tornado CVE-2026-49855 高危 6.5.2 6.5.6 tornado AsyncHTTPClient accumulates decompressed chunks without size limit (gzip bomb)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49855

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

urllib3 CVE-2025-66418 高危 2.5.0 2.6.0 urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66418

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2025-12-05 16:15 修改: 2026-06-17 09:56

urllib3 CVE-2025-66471 高危 2.5.0 2.6.0 urllib3: urllib3 Streaming API improperly handles highly compressed data

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66471

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2025-12-05 17:16 修改: 2026-06-17 09:56

urllib3 CVE-2026-21441 高危 2.5.0 2.6.3 urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-21441

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-01-07 22:15 修改: 2026-06-30 03:17

urllib3 CVE-2026-44431 高危 2.5.0 2.7.0 urllib3: urllib3: Information disclosure via cross-origin redirects forwarding sensitive headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44431

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-05-13 16:16 修改: 2026-06-26 12:16

pypdf CVE-2026-28804 中危 6.6.0 6.7.5 pypdf: pypdf: Denial of Service via crafted PDF with ASCIIHexDecode filter

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28804

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-03-06 07:16 修改: 2026-06-17 10:29

pypdf CVE-2026-31826 中危 6.6.0 6.8.0 pypdf: pypdf: Denial of Service due to excessive memory consumption via crafted PDF

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31826

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-03-10 22:16 修改: 2026-06-17 10:34

pypdf CVE-2026-33123 中危 6.6.0 6.9.1 pypdf: pypdf: Denial of Service due to excessive resource consumption from crafted PDF

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33123

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-03-20 10:16 修改: 2026-06-17 10:36

pypdf CVE-2026-33699 中危 6.6.0 6.9.2 pypdf: pypdf: Denial of Service via crafted PDF in non-strict mode

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33699

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-03-27 01:16 修改: 2026-06-17 10:37

pypdf CVE-2026-40260 中危 6.6.0 6.10.0 pypdf: pypdf: Denial of Service due to memory exhaustion via manipulated XMP metadata

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40260

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-04-17 01:17 修改: 2026-06-17 10:44

pypdf CVE-2026-41168 中危 6.6.0 6.10.1 pypdf: pypdf: Denial of Service via crafted PDF with oversized streams

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41168

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-04-22 21:17 修改: 2026-06-17 10:46

pypdf CVE-2026-41312 中危 6.6.0 6.10.2 pypdf: pypdf: Denial of Service due to excessive memory consumption via specially crafted PDF

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41312

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-04-22 22:16 修改: 2026-06-17 10:46

pypdf CVE-2026-41313 中危 6.6.0 6.10.2 pypdf: pypdf: Denial of Service via crafted PDF with large trailer /Size value

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41313

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-04-22 22:16 修改: 2026-06-17 10:46

pypdf CVE-2026-41314 中危 6.6.0 6.10.2 pypdf: pypdf: Denial of Service via crafted PDF with large image sizes

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41314

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-04-22 22:16 修改: 2026-06-17 10:46

pypdf CVE-2026-48155 中危 6.6.0 6.12.0 pypdf: pypdf: Denial of Service via crafted PDF with large character offsets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48155

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-05-28 16:16 修改: 2026-06-17 10:54

pypdf CVE-2026-48156 中危 6.6.0 6.12.0 pypdf: pypdf: Denial of Service via crafted PDF

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48156

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-05-28 16:16 修改: 2026-06-17 10:54

pypdf CVE-2026-48735 中危 6.6.0 6.12.1 pypdf: pypdf: Denial of Service via crafted PDF with large XMP metadata

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48735

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-05-28 16:16 修改: 2026-06-17 10:55

pypdf CVE-2026-49460 中危 6.6.0 6.12.2 pypdf: pypdf: Denial of Service via crafted PDF with FlateDecode filter

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49460

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-22 21:16 修改: 2026-06-25 16:51

pypdf CVE-2026-49461 中危 6.6.0 6.12.2 pypdf: pypdf: Denial of Service via crafted PDF with self-referencing form XObject

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49461

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-22 21:16 修改: 2026-06-25 16:48

pypdf CVE-2026-54530 中危 6.6.0 6.13.0 pypdf: python-pypdf: pypdf: Denial of Service via crafted PDF processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54530

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-22 21:16 修改: 2026-06-25 16:47

pypdf CVE-2026-54531 中危 6.6.0 6.13.0 pypdf: pypdf: Denial of Service via crafted PDF with outlines

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54531

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-22 21:16 修改: 2026-06-25 16:46

pypdf GHSA-jm82-fx9c-mx94 中危 6.6.0 6.13.3 pypdf: Missing stream length values ignore defined limits

漏洞详情: https://github.com/advisories/GHSA-jm82-fx9c-mx94

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-18 14:28 修改: 2026-06-18 14:28

python-dotenv CVE-2026-28684 中危 1.1.1 1.2.2 python-dotenv: python-dotenv: Arbitrary file overwrite via symbolic link following

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28684

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-04-20 17:16 修改: 2026-06-17 10:28

fonttools CVE-2025-66034 中危 4.60.0 4.60.2 fonttools: fontTools: Arbitrary file write leading to remote code execution via malicious .designspace file

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66034

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2025-11-29 01:16 修改: 2026-06-17 09:56

idna CVE-2026-45409 中危 3.10 3.15 Internationalized Domain Names in Applications (IDNA) for Python provi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45409

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-05 23:16 修改: 2026-06-17 10:52

cryptography CVE-2026-39892 中危 46.0.3 46.0.7 cryptography: Cryptography: Buffer overflow via non-contiguous buffer in API

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39892

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-04-08 21:17 修改: 2026-06-30 03:19

python-multipart CVE-2026-40347 中危 0.0.20 0.0.26 python-multipart: Python-Multipart: Denial of Service via crafted multipart/form-data requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40347

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-04-18 00:16 修改: 2026-06-17 10:45

requests CVE-2026-25645 中危 2.32.5 2.33.0 requests: Requests: Security bypass due to predictable temporary file creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25645

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-03-25 17:16 修改: 2026-06-17 10:25

pillow CVE-2026-42308 中危 11.3.0 12.2.0 Pillow: python: Pillow: Denial of Service via integer overflow in font processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42308

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-05-09 06:16 修改: 2026-06-17 10:47

pillow CVE-2026-42309 中危 11.3.0 12.2.0 Pillow: Pillow: Denial of Service via specially crafted coordinate input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42309

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-05-09 06:16 修改: 2026-06-17 10:47

pillow CVE-2026-42310 中危 11.3.0 12.2.0 Pillow: Pillow: Denial of Service via malicious PDF processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42310

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-05-09 06:16 修改: 2026-06-17 10:47

starlette CVE-2026-48710 中危 0.48.0 1.0.1 starlette: Starlette: Security restriction bypass via malformed HTTP Host header

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48710

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-05-26 22:16 修改: 2026-06-29 14:16

starlette CVE-2026-48817 中危 0.48.0 1.1.0 starlette: Starlette: Information disclosure and unintended method execution via non-standard HTTP methods

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48817

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-17 20:17 修改: 2026-06-26 19:18

pip CVE-2026-3219 中危 26.0.1 26.1 pip: pip: Incorrect file installation due to improper archive handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3219

镜像层: sha256:09c914c62d6db278df1e2b9742a362358a1eea58a3c79ebf5165e841c43af0a4

发布日期: 2026-04-20 16:16 修改: 2026-06-17 10:43

pip CVE-2026-6357 中危 26.0.1 26.1 pip: pip: Arbitrary code execution or information disclosure via malicious wheel package installation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6357

镜像层: sha256:09c914c62d6db278df1e2b9742a362358a1eea58a3c79ebf5165e841c43af0a4

发布日期: 2026-04-27 15:16 修改: 2026-06-17 11:00

pypdf CVE-2026-24688 中危 6.6.0 6.6.2 pypdf: pypdf Infinite Loop when processing outlines/bookmarks

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24688

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-01-27 20:16 修改: 2026-06-17 10:23

pypdf CVE-2026-27024 中危 6.6.0 6.7.1 pypdf: pypdf: Denial of Service via crafted PDF with TreeObject outlines

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27024

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-02-20 22:16 修改: 2026-06-17 10:26

tornado GHSA-78cv-mqj4-43f7 中危 6.5.2 6.5.5 Tornado has incomplete validation of cookie attributes

漏洞详情: https://github.com/advisories/GHSA-78cv-mqj4-43f7

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-03-11 22:17 修改: 2026-03-11 22:17

tornado GHSA-pw6j-qg29-8w7f 中危 6.5.2 6.5.7 Tornado: CurlAsyncHTTPClient leaks per-request credentials on handle reuse

漏洞详情: https://github.com/advisories/GHSA-pw6j-qg29-8w7f

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-15 20:37 修改: 2026-06-15 20:37

pypdf CVE-2026-27025 中危 6.6.0 6.7.1 pypdf: pypdf: Denial of Service via crafted PDF with large font values

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27025

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-02-20 22:16 修改: 2026-06-17 10:26

pypdf CVE-2026-27026 中危 6.6.0 6.7.1 pypdf: pypdf: Denial of Service via malformed PDF /FlateDecode stream

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27026

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-02-20 22:16 修改: 2026-06-17 10:26

pypdf CVE-2026-27888 中危 6.6.0 6.7.3 pypdf: pypdf: Denial of Service via crafted PDF

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27888

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-02-26 01:16 修改: 2026-06-17 10:27

pypdf CVE-2026-28351 中危 6.6.0 6.7.4 pypdf: pypdf: Denial of Service via crafted PDF with RunLengthDecode filter

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28351

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-02-27 21:16 修改: 2026-06-17 10:28

python-multipart CVE-2026-53537 低危 0.0.20 0.0.30 Python-Multipart is a streaming multipart parser for Python. Prior to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53537

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-22 18:16 修改: 2026-06-26 19:54

python-multipart CVE-2026-53538 低危 0.0.20 0.0.30 Python-Multipart is a streaming multipart parser for Python. Prior to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53538

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-22 18:16 修改: 2026-06-26 19:52

python-multipart CVE-2026-53540 低危 0.0.20 0.0.31 Python-Multipart is a streaming multipart parser for Python. Prior to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53540

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-22 18:16 修改: 2026-06-26 19:50

tornado CVE-2026-49854 低危 6.5.2 6.5.6 Tornado has out-of-bounds memory access via C extension

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49854

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

starlette CVE-2026-54282 低危 0.48.0 1.3.0 starlette: Starlette: Information disclosure due to improper HTTP request path validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54282

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-06-22 18:16 修改: 2026-06-26 19:18

pypdf CVE-2026-27628 低危 6.6.0 6.7.2 pypdf: possible infinite loop when loading circular /Prev entries in cross-reference streams

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27628

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-02-25 03:16 修改: 2026-06-17 10:27

Pygments CVE-2026-4539 低危 2.19.2 2.20.0 pygments: Pygments: Denial of Service via inefficient regular expression processing in AdlLexer

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4539

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-03-22 06:16 修改: 2026-06-17 10:56

cryptography CVE-2026-34073 低危 46.0.3 46.0.6 python-cryptography: Cryptography: Security bypass due to improper DNS name constraint validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34073

镜像层: sha256:9e5896b75b6bd2f3996886a0bb451925d40ffed5eae639660e407f4929e606a9

发布日期: 2026-03-31 03:15 修改: 2026-06-17 10:38

检测到您正在使用广告拦截插件,本站为公益站点,依赖广告维持运转 🙏 查看如何关闭 ×