| openssl |
CVE-2026-45447 |
高危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 15:16
|
| openssl-libs |
CVE-2026-45447 |
高危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 15:16
|
| postgresql |
CVE-2026-6473 |
高危 |
13.23-2.el9_7 |
|
postgresql: integer overflow can cause an undersized allocation and an out-of-bounds write
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6473
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-14 14:16 修改: 2026-05-18 14:59
|
| postgresql |
CVE-2026-6477 |
高危 |
13.23-2.el9_7 |
|
postgresql: PostgreSQL libpq: Buffer overflow allows server superuser to overwrite client stack memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6477
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-14 14:16 修改: 2026-05-18 15:03
|
| postgresql |
CVE-2026-6478 |
高危 |
13.23-2.el9_7 |
|
postgresql: PostgreSQL: Credential recovery via covert timing channel in MD5 password comparison
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6478
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-14 14:16 修改: 2026-05-18 15:03
|
| postgresql-private-libs |
CVE-2026-6473 |
高危 |
13.23-2.el9_7 |
|
postgresql: integer overflow can cause an undersized allocation and an out-of-bounds write
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6473
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-14 14:16 修改: 2026-05-18 14:59
|
| postgresql-private-libs |
CVE-2026-6477 |
高危 |
13.23-2.el9_7 |
|
postgresql: PostgreSQL libpq: Buffer overflow allows server superuser to overwrite client stack memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6477
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-14 14:16 修改: 2026-05-18 15:03
|
| postgresql-private-libs |
CVE-2026-6478 |
高危 |
13.23-2.el9_7 |
|
postgresql: PostgreSQL: Credential recovery via covert timing channel in MD5 password comparison
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6478
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-14 14:16 修改: 2026-05-18 15:03
|
| rsync |
CVE-2026-29518 |
高危 |
3.2.5-7.el9_8 |
|
rsync: TOCTOU symlink race condition allowing local privilege escalation in daemon mode without chroot.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29518
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-20 13:16 修改: 2026-05-26 16:16
|
| rsync |
CVE-2026-43618 |
高危 |
3.2.5-7.el9_8 |
|
rsync: rsync: Remote memory disclosure via integer overflow in compressed-token decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43618
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-20 02:16 修改: 2026-05-21 20:34
|
| curl-minimal |
CVE-2026-5545 |
中危 |
7.76.1-40.el9 |
|
curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
|
| curl-minimal |
CVE-2026-5773 |
中危 |
7.76.1-40.el9 |
|
curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
|
| curl-minimal |
CVE-2026-6253 |
中危 |
7.76.1-40.el9 |
|
curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
|
| curl-minimal |
CVE-2026-6429 |
中危 |
7.76.1-40.el9 |
|
curl: libcurl: Credential leak via reused proxy connection during HTTP redirects
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
|
| curl-minimal |
CVE-2026-7168 |
中危 |
7.76.1-40.el9 |
|
curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
|
| glibc |
CVE-2026-5435 |
中危 |
2.34-270.el9_8 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:6c22aa0612d072b48b07f1064443546000ca9025657e150bd0ed03a765222a01
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| glibc |
CVE-2026-5450 |
中危 |
2.34-270.el9_8 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:6c22aa0612d072b48b07f1064443546000ca9025657e150bd0ed03a765222a01
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| glibc |
CVE-2026-5928 |
中危 |
2.34-270.el9_8 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:6c22aa0612d072b48b07f1064443546000ca9025657e150bd0ed03a765222a01
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| glibc-common |
CVE-2026-5435 |
中危 |
2.34-270.el9_8 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:6c22aa0612d072b48b07f1064443546000ca9025657e150bd0ed03a765222a01
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| glibc-common |
CVE-2026-5450 |
中危 |
2.34-270.el9_8 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:6c22aa0612d072b48b07f1064443546000ca9025657e150bd0ed03a765222a01
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| glibc-common |
CVE-2026-5928 |
中危 |
2.34-270.el9_8 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:6c22aa0612d072b48b07f1064443546000ca9025657e150bd0ed03a765222a01
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| glibc-minimal-langpack |
CVE-2026-5435 |
中危 |
2.34-270.el9_8 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:6c22aa0612d072b48b07f1064443546000ca9025657e150bd0ed03a765222a01
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| glibc-minimal-langpack |
CVE-2026-5450 |
中危 |
2.34-270.el9_8 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:6c22aa0612d072b48b07f1064443546000ca9025657e150bd0ed03a765222a01
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| glibc-minimal-langpack |
CVE-2026-5928 |
中危 |
2.34-270.el9_8 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:6c22aa0612d072b48b07f1064443546000ca9025657e150bd0ed03a765222a01
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| jq |
CVE-2026-32316 |
中危 |
1.6-19.el9_8.2 |
|
jq: jq: Denial of Service or potential arbitrary code execution due to integer overflow and heap-based buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32316
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-13 18:16 修改: 2026-04-22 16:29
|
| jq |
CVE-2026-33947 |
中危 |
1.6-19.el9_8.2 |
|
jq: unbounded Recursion in jv_setpath() / jv_getpath() / delpaths_sorted()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33947
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-13 22:16 修改: 2026-04-21 23:57
|
| jq |
CVE-2026-39956 |
中危 |
1.6-19.el9_8.2 |
|
jq: missing runtime type checks for _strindices lead to crash and limited memory disclosure
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39956
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-13 23:16 修改: 2026-04-21 23:54
|
| jq |
CVE-2026-40612 |
中危 |
1.6-19.el9_8.2 |
|
jq: stack overflow via unbounded recursion in jv_contains
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40612
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:00
|
| jq |
CVE-2026-41256 |
中危 |
1.6-19.el9_8.2 |
|
jq: embedded NUL truncates top-level jq programs loaded with -f
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41256
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:00
|
| jq |
CVE-2026-41257 |
中危 |
1.6-19.el9_8.2 |
|
jq: signed-int overflow in stack_reallocate
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41257
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:01
|
| jq |
CVE-2026-43894 |
中危 |
1.6-19.el9_8.2 |
|
jq: jq: Arbitrary Code Execution or Denial of Service via Signed Integer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43894
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:01
|
| jq |
CVE-2026-43895 |
中危 |
1.6-19.el9_8.2 |
|
jq: embedded NUL in jq import paths causes local redaction-policy bypass and preserves sensitive fields in published artifacts
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43895
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:02
|
| jq |
CVE-2026-43896 |
中危 |
1.6-19.el9_8.2 |
|
jq: stack overflow in recursive object merge
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43896
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-11 18:16 修改: 2026-05-13 22:34
|
| jq |
CVE-2026-44777 |
中危 |
1.6-19.el9_8.2 |
|
jq: stack overflow in module loading on mutual include
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44777
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:05
|
| krb5-libs |
CVE-2026-11850 |
中危 |
1.21.1-10.el9_8 |
|
krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-11 10:16 修改: 2026-06-12 15:16
|
| libblkid |
CVE-2026-27456 |
中危 |
2.37.4-25.el9 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libcurl |
CVE-2025-13034 |
中危 |
7.76.1-40.el9 |
|
curl: Public key pinning bypass via QUIC and GnuTLS allows server impersonation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13034
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:54
|
| libcurl |
CVE-2025-14017 |
中危 |
7.76.1-40.el9 |
|
curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
|
| libcurl |
CVE-2026-1965 |
中危 |
7.76.1-40.el9 |
|
curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
|
| libcurl |
CVE-2026-3783 |
中危 |
7.76.1-40.el9 |
|
curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
|
| libcurl |
CVE-2026-3784 |
中危 |
7.76.1-40.el9 |
|
curl: curl: Unauthorized access due to improper HTTP proxy connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
|
| libcurl |
CVE-2026-3805 |
中危 |
7.76.1-40.el9 |
|
curl: curl: Arbitrary code execution or Denial of Service via use-after-free in SMB request handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3805
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:08
|
| libcurl |
CVE-2026-4873 |
中危 |
7.76.1-40.el9 |
|
curl: curl: Information disclosure due to incorrect TLS connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
|
| libcurl |
CVE-2026-5545 |
中危 |
7.76.1-40.el9 |
|
curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
|
| libcurl |
CVE-2026-5773 |
中危 |
7.76.1-40.el9 |
|
curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
|
| libcurl |
CVE-2026-6253 |
中危 |
7.76.1-40.el9 |
|
curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
|
| libcurl |
CVE-2026-6429 |
中危 |
7.76.1-40.el9 |
|
curl: libcurl: Credential leak via reused proxy connection during HTTP redirects
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
|
| libcurl |
CVE-2026-7168 |
中危 |
7.76.1-40.el9 |
|
curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
|
| libfdisk |
CVE-2026-27456 |
中危 |
2.37.4-25.el9 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libgcrypt |
CVE-2026-41989 |
中危 |
1.10.0-11.el9 |
|
Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-23 05:16 修改: 2026-04-27 18:33
|
| libmount |
CVE-2026-27456 |
中危 |
2.37.4-25.el9 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libsmartcols |
CVE-2026-27456 |
中危 |
2.37.4-25.el9 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libssh |
CVE-2025-5372 |
中危 |
0.10.4-18.el9 |
|
libssh: Incorrect Return Code Handling in ssh_kdf() in libssh
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5372
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2025-07-04 06:15 修改: 2026-06-08 03:16
|
| libssh |
CVE-2026-3731 |
中危 |
0.10.4-18.el9 |
|
libssh: libssh: Denial of Service via out-of-bounds read in SFTP extension name handler
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3731
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-03-08 11:15 修改: 2026-03-12 19:02
|
| libssh-config |
CVE-2025-5372 |
中危 |
0.10.4-18.el9 |
|
libssh: Incorrect Return Code Handling in ssh_kdf() in libssh
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5372
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2025-07-04 06:15 修改: 2026-06-08 03:16
|
| libssh-config |
CVE-2026-3731 |
中危 |
0.10.4-18.el9 |
|
libssh: libssh: Denial of Service via out-of-bounds read in SFTP extension name handler
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3731
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-03-08 11:15 修改: 2026-03-12 19:02
|
| libuuid |
CVE-2026-27456 |
中危 |
2.37.4-25.el9 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| openldap |
CVE-2026-22185 |
中危 |
2.6.8-4.el9 |
|
OpenLDAP: OpenLDAP LMDB: Denial of Service and Information Disclosure via Heap Buffer Underflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22185
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-01-07 21:16 修改: 2026-04-15 00:35
|
| bzip2-libs |
CVE-2026-42250 |
中危 |
1.0.8-11.el9 |
|
bzip2: bzip2: Denial of Service in bzip2recover via a specially crafted file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42250
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-28 14:16 修改: 2026-06-05 08:16
|
| openssl |
CVE-2026-2673 |
中危 |
1:3.5.5-2.el9_8 |
|
openssl: OpenSSL TLS 1.3 server may choose unexpected key agreement group
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2673
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-03-13 19:54 修改: 2026-06-05 19:48
|
| openssl |
CVE-2026-28390 |
中危 |
1:3.5.5-2.el9_8 |
1:3.5.5-3.el9_8 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-34182 |
中危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
|
| openssl |
CVE-2026-34183 |
中危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34183
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 16:17
|
| openssl |
CVE-2026-42764 |
中危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: NULL pointer dereference in QUIC server initial packet handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42764
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-45445 |
中危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: AES-OCB IV Ignored on EVP_Cipher() Path
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl-fips-provider |
CVE-2026-2673 |
中危 |
3.0.7-8.el9 |
|
openssl: OpenSSL TLS 1.3 server may choose unexpected key agreement group
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2673
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-03-13 19:54 修改: 2026-06-05 19:48
|
| openssl-fips-provider |
CVE-2026-31790 |
中危 |
3.0.7-8.el9 |
|
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl-fips-provider-so |
CVE-2026-2673 |
中危 |
3.0.7-8.el9 |
|
openssl: OpenSSL TLS 1.3 server may choose unexpected key agreement group
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2673
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-03-13 19:54 修改: 2026-06-05 19:48
|
| openssl-fips-provider-so |
CVE-2026-31790 |
中危 |
3.0.7-8.el9 |
|
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| coreutils |
CVE-2025-5278 |
中危 |
8.32-40.el9 |
|
coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5278
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2025-05-27 21:15 修改: 2026-05-19 17:16
|
| openssl-libs |
CVE-2026-2673 |
中危 |
1:3.5.5-2.el9_8 |
|
openssl: OpenSSL TLS 1.3 server may choose unexpected key agreement group
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2673
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-03-13 19:54 修改: 2026-06-05 19:48
|
| openssl-libs |
CVE-2026-28390 |
中危 |
1:3.5.5-2.el9_8 |
1:3.5.5-3.el9_8 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2026-34182 |
中危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
|
| openssl-libs |
CVE-2026-34183 |
中危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34183
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 16:17
|
| openssl-libs |
CVE-2026-42764 |
中危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: NULL pointer dereference in QUIC server initial packet handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42764
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl-libs |
CVE-2026-45445 |
中危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: AES-OCB IV Ignored on EVP_Cipher() Path
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| coreutils-common |
CVE-2025-5278 |
中危 |
8.32-40.el9 |
|
coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5278
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2025-05-27 21:15 修改: 2026-05-19 17:16
|
| curl-minimal |
CVE-2025-13034 |
中危 |
7.76.1-40.el9 |
|
curl: Public key pinning bypass via QUIC and GnuTLS allows server impersonation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13034
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:54
|
| curl-minimal |
CVE-2025-14017 |
中危 |
7.76.1-40.el9 |
|
curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
|
| postgresql |
CVE-2025-4207 |
中危 |
13.23-2.el9_7 |
|
postgresql: PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4207
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2025-05-08 15:15 修改: 2026-04-15 00:35
|
| postgresql |
CVE-2026-6474 |
中危 |
13.23-2.el9_7 |
|
postgresql: PostgreSQL: Information disclosure via externally-controlled format string in timeofday() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6474
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-14 14:16 修改: 2026-05-18 15:00
|
| postgresql |
CVE-2026-6475 |
中危 |
13.23-2.el9_7 |
|
postgresql: PostgreSQL: Operating system account hijack via symlink following in pg_basebackup and pg_rewind
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6475
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-14 14:16 修改: 2026-05-18 15:02
|
| postgresql |
CVE-2026-6575 |
中危 |
13.23-2.el9_7 |
|
postgresql: PostgreSQL: Information disclosure via buffer over-read in pg_restore_attribute_stats()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6575
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-14 14:16 修改: 2026-05-18 15:04
|
| curl-minimal |
CVE-2026-1965 |
中危 |
7.76.1-40.el9 |
|
curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
|
| curl-minimal |
CVE-2026-3783 |
中危 |
7.76.1-40.el9 |
|
curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
|
| curl-minimal |
CVE-2026-3784 |
中危 |
7.76.1-40.el9 |
|
curl: curl: Unauthorized access due to improper HTTP proxy connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
|
| postgresql-private-libs |
CVE-2025-4207 |
中危 |
13.23-2.el9_7 |
|
postgresql: PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4207
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2025-05-08 15:15 修改: 2026-04-15 00:35
|
| postgresql-private-libs |
CVE-2026-6474 |
中危 |
13.23-2.el9_7 |
|
postgresql: PostgreSQL: Information disclosure via externally-controlled format string in timeofday() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6474
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-14 14:16 修改: 2026-05-18 15:00
|
| postgresql-private-libs |
CVE-2026-6475 |
中危 |
13.23-2.el9_7 |
|
postgresql: PostgreSQL: Operating system account hijack via symlink following in pg_basebackup and pg_rewind
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6475
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-14 14:16 修改: 2026-05-18 15:02
|
| postgresql-private-libs |
CVE-2026-6575 |
中危 |
13.23-2.el9_7 |
|
postgresql: PostgreSQL: Information disclosure via buffer over-read in pg_restore_attribute_stats()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6575
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-14 14:16 修改: 2026-05-18 15:04
|
| curl-minimal |
CVE-2026-3805 |
中危 |
7.76.1-40.el9 |
|
curl: curl: Arbitrary code execution or Denial of Service via use-after-free in SMB request handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3805
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:08
|
| curl-minimal |
CVE-2026-4873 |
中危 |
7.76.1-40.el9 |
|
curl: curl: Information disclosure due to incorrect TLS connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
|
| rsync |
CVE-2026-43617 |
中危 |
3.2.5-7.el9_8 |
|
rsync: rsync: Hostname-based ACL bypass in daemon chroot configuration
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43617
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-20 02:16 修改: 2026-05-21 20:54
|
| rsync |
CVE-2026-43619 |
中危 |
3.2.5-7.el9_8 |
|
rsync: rsync: Symlink race vulnerability allows unauthorized file operations
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43619
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-20 02:16 修改: 2026-05-21 20:42
|
| rsync |
CVE-2026-43620 |
中危 |
3.2.5-7.el9_8 |
|
rsync: rsync: Remote Denial of Service via Out-of-bounds Read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43620
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-20 02:16 修改: 2026-05-21 20:47
|
| rsync |
CVE-2026-45232 |
中危 |
3.2.5-7.el9_8 |
|
rsync: Rsync: Denial of Service via malformed HTTP proxy response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45232
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-20 02:16 修改: 2026-05-21 20:52
|
| sed |
CVE-2026-5958 |
中危 |
4.8-10.el9 |
|
sed: GNU sed TOCTOU race condition
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5958
镜像层: sha256:395a2797942e8a8532905fc0d75bef7dfee0dca2e266ce58ce2a8d6f82566bf6
发布日期: 2026-04-20 12:16 修改: 2026-05-19 15:17
|
| systemd-libs |
CVE-2026-4105 |
中危 |
252-67.el9_8.2 |
|
systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-03-13 19:55 修改: 2026-04-30 17:16
|
| util-linux |
CVE-2026-27456 |
中危 |
2.37.4-25.el9 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| util-linux-core |
CVE-2026-27456 |
中危 |
2.37.4-25.el9 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| xz-libs |
CVE-2026-34743 |
中危 |
5.2.5-8.el9_0 |
|
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-02 19:21 修改: 2026-04-15 17:33
|
| openssl |
CVE-2026-42770 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: FFC-DH Peer Validation Uses Attacker-Supplied q
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-45446 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-7383 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-9076 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| gawk |
CVE-2023-4156 |
低危 |
5.1.0-6.el9 |
|
gawk: heap out of bound read in builtin.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4156
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2023-09-25 18:15 修改: 2024-11-21 08:34
|
| libgcc |
CVE-2021-46195 |
低危 |
11.5.0-14.el9 |
|
gcc: uncontrolled recursion in libiberty/rust-demangle.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46195
镜像层: sha256:6c22aa0612d072b48b07f1064443546000ca9025657e150bd0ed03a765222a01
发布日期: 2022-01-14 20:15 修改: 2024-11-21 06:33
|
| libgcc |
CVE-2022-27943 |
低危 |
11.5.0-14.el9 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:6c22aa0612d072b48b07f1064443546000ca9025657e150bd0ed03a765222a01
发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
|
| curl-minimal |
CVE-2024-11053 |
低危 |
7.76.1-40.el9 |
|
curl: curl netrc password leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2024-12-11 08:15 修改: 2025-11-03 21:16
|
| libgcrypt |
CVE-2026-41990 |
低危 |
1.10.0-11.el9 |
|
Libgcrypt: Libgcrypt: Denial of Service or data integrity issues from missing bounds check during Dilithium signing.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41990
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-23 05:16 修改: 2026-04-27 18:33
|
| curl-minimal |
CVE-2024-7264 |
低危 |
7.76.1-40.el9 |
|
curl: libcurl: ASN.1 date parser overread
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2024-07-31 08:15 修改: 2025-11-03 23:17
|
| curl-minimal |
CVE-2024-9681 |
低危 |
7.76.1-40.el9 |
|
curl: HSTS subdomain overwrites parent cache entry
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2024-11-06 08:15 修改: 2025-11-03 21:18
|
| jq |
CVE-2025-9403 |
低危 |
1.6-19.el9_8.2 |
|
jq: assertion failure in run_jq_tests() of the file jq_test.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9403
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2025-08-25 03:15 修改: 2026-04-29 01:00
|
| jq |
CVE-2026-33948 |
低危 |
1.6-19.el9_8.2 |
|
jq: jq: Input validation bypass via embedded NUL bytes allows parser differential attacks
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33948
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-14 00:16 修改: 2026-04-21 23:48
|
| curl-minimal |
CVE-2025-14524 |
低危 |
7.76.1-40.el9 |
|
curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
|
| curl-minimal |
CVE-2025-15079 |
低危 |
7.76.1-40.el9 |
|
curl: Host verification bypass during SSH transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:50
|
| openssl-libs |
CVE-2024-13176 |
低危 |
1:3.5.5-2.el9_8 |
|
openssl: Timing side-channel in ECDSA signature computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13176
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2025-01-20 14:15 修改: 2026-04-15 00:35
|
| openssl-libs |
CVE-2024-41996 |
低危 |
1:3.5.5-2.el9_8 |
|
openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2024-08-26 06:15 修改: 2026-05-12 12:17
|
| openssl-libs |
CVE-2025-9232 |
低危 |
1:3.5.5-2.el9_8 |
|
openssl: Out-of-bounds read in HTTP client no_proxy handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9232
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
|
| openssl-libs |
CVE-2026-28387 |
低危 |
1:3.5.5-2.el9_8 |
|
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2026-28388 |
低危 |
1:3.5.5-2.el9_8 |
|
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2026-28389 |
低危 |
1:3.5.5-2.el9_8 |
|
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2026-31789 |
低危 |
1:3.5.5-2.el9_8 |
|
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl-libs |
CVE-2026-34180 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl-libs |
CVE-2026-34181 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34181
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
|
| openssl-libs |
CVE-2026-42766 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl-libs |
CVE-2026-42767 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl-libs |
CVE-2026-42768 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42768
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl-libs |
CVE-2026-42769 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42769
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl-libs |
CVE-2026-42770 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: FFC-DH Peer Validation Uses Attacker-Supplied q
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl-libs |
CVE-2026-45446 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl-libs |
CVE-2026-7383 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl-libs |
CVE-2026-9076 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| pcre2 |
CVE-2022-41409 |
低危 |
10.40-6.el9 |
|
pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409
镜像层: sha256:6c22aa0612d072b48b07f1064443546000ca9025657e150bd0ed03a765222a01
发布日期: 2023-07-18 14:15 修改: 2024-11-21 07:23
|
| pcre2-syntax |
CVE-2022-41409 |
低危 |
10.40-6.el9 |
|
pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409
镜像层: sha256:6c22aa0612d072b48b07f1064443546000ca9025657e150bd0ed03a765222a01
发布日期: 2023-07-18 14:15 修改: 2024-11-21 07:23
|
| libtasn1 |
CVE-2025-13151 |
低危 |
4.16.0-9.el9 |
|
libtasn1: libtasn1: Denial of Service via stack-based buffer overflow in asn1_expend_octet_string
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13151
镜像层: sha256:395a2797942e8a8532905fc0d75bef7dfee0dca2e266ce58ce2a8d6f82566bf6
发布日期: 2026-01-07 22:15 修改: 2026-02-02 19:27
|
| curl-minimal |
CVE-2025-15224 |
低危 |
7.76.1-40.el9 |
|
curl: libssh key passphrase bypass without agent set
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:47
|
| ncurses-base |
CVE-2023-50495 |
低危 |
6.2-12.20210508.el9 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:6c22aa0612d072b48b07f1064443546000ca9025657e150bd0ed03a765222a01
发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
|
| ncurses-libs |
CVE-2023-50495 |
低危 |
6.2-12.20210508.el9 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:6c22aa0612d072b48b07f1064443546000ca9025657e150bd0ed03a765222a01
发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
|
| curl-minimal |
CVE-2026-6276 |
低危 |
7.76.1-40.el9 |
|
curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
|
| libcurl |
CVE-2024-11053 |
低危 |
7.76.1-40.el9 |
|
curl: curl netrc password leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2024-12-11 08:15 修改: 2025-11-03 21:16
|
| libcurl |
CVE-2024-7264 |
低危 |
7.76.1-40.el9 |
|
curl: libcurl: ASN.1 date parser overread
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2024-07-31 08:15 修改: 2025-11-03 23:17
|
| postgresql |
CVE-2024-10977 |
低危 |
13.23-2.el9_7 |
|
postgresql: PostgreSQL libpq retains an error message from man-in-the-middle
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10977
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2024-11-14 13:15 修改: 2025-11-03 22:16
|
| libcurl |
CVE-2024-9681 |
低危 |
7.76.1-40.el9 |
|
curl: HSTS subdomain overwrites parent cache entry
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2024-11-06 08:15 修改: 2025-11-03 21:18
|
| libcurl |
CVE-2025-14524 |
低危 |
7.76.1-40.el9 |
|
curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
|
| libcurl |
CVE-2025-15079 |
低危 |
7.76.1-40.el9 |
|
curl: Host verification bypass during SSH transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:50
|
| libcurl |
CVE-2025-15224 |
低危 |
7.76.1-40.el9 |
|
curl: libssh key passphrase bypass without agent set
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:47
|
| libcurl |
CVE-2026-6276 |
低危 |
7.76.1-40.el9 |
|
curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
|
| openssl |
CVE-2024-13176 |
低危 |
1:3.5.5-2.el9_8 |
|
openssl: Timing side-channel in ECDSA signature computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13176
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2025-01-20 14:15 修改: 2026-04-15 00:35
|
| openssl |
CVE-2024-41996 |
低危 |
1:3.5.5-2.el9_8 |
|
openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2024-08-26 06:15 修改: 2026-05-12 12:17
|
| postgresql-private-libs |
CVE-2024-10977 |
低危 |
13.23-2.el9_7 |
|
postgresql: PostgreSQL libpq retains an error message from man-in-the-middle
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10977
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2024-11-14 13:15 修改: 2025-11-03 22:16
|
| openssl |
CVE-2025-9232 |
低危 |
1:3.5.5-2.el9_8 |
|
openssl: Out-of-bounds read in HTTP client no_proxy handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9232
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
|
| openssl |
CVE-2026-28387 |
低危 |
1:3.5.5-2.el9_8 |
|
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-28388 |
低危 |
1:3.5.5-2.el9_8 |
|
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-28389 |
低危 |
1:3.5.5-2.el9_8 |
|
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-31789 |
低危 |
1:3.5.5-2.el9_8 |
|
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-34180 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| rsync |
CVE-2026-27171 |
低危 |
3.2.5-7.el9_8 |
|
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-02-18 04:16 修改: 2026-03-25 21:27
|
| openssl |
CVE-2026-34181 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34181
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
|
| openssl |
CVE-2026-42766 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42767 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42768 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42768
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42769 |
低危 |
1:3.5.5-2.el9_8 |
1:3.5.5-4.el9_8 |
openssl: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42769
镜像层: sha256:567790522b56140d00bdc3b82457dff18ce9d0a395da01887574b96fc07415fc
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| zlib |
CVE-2026-27171 |
低危 |
1.2.11-40.el9 |
|
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:395a2797942e8a8532905fc0d75bef7dfee0dca2e266ce58ce2a8d6f82566bf6
发布日期: 2026-02-18 04:16 修改: 2026-03-25 21:27
|