| libssl3t64 |
CVE-2026-45447 |
高危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-06-09 17:17 修改: 2026-06-10 15:16
|
| openssl |
CVE-2026-45447 |
高危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-06-09 17:17 修改: 2026-06-10 15:16
|
| git |
CVE-2024-52005 |
中危 |
1:2.43.0-1ubuntu7.3 |
|
git: The sideband payload is passed unfiltered to the terminal in git
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52005
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2025-01-15 18:15 修改: 2025-12-18 16:00
|
| git-man |
CVE-2024-52005 |
中危 |
1:2.43.0-1ubuntu7.3 |
|
git: The sideband payload is passed unfiltered to the terminal in git
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52005
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2025-01-15 18:15 修改: 2025-12-18 16:00
|
| libblkid1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libc-bin |
CVE-2026-4046 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-03-30 18:16 修改: 2026-04-20 22:16
|
| libc-bin |
CVE-2026-4437 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:41
|
| libc-bin |
CVE-2026-4438 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:40
|
| libc-bin |
CVE-2026-5435 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| libc-bin |
CVE-2026-6238 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
|
| libc6 |
CVE-2026-4046 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-03-30 18:16 修改: 2026-04-20 22:16
|
| libc6 |
CVE-2026-4437 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:41
|
| libc6 |
CVE-2026-4438 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:40
|
| libc6 |
CVE-2026-5435 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| libc6 |
CVE-2026-6238 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
|
| libcap2 |
CVE-2026-4878 |
中危 |
1:2.66-5ubuntu2.2 |
1:2.66-5ubuntu2.4 |
libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-09 16:16 修改: 2026-06-11 10:16
|
| libexpat1 |
CVE-2025-66382 |
中危 |
2.6.1-2ubuntu0.4 |
|
libexpat: libexpat: Denial of service via crafted file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2025-11-28 07:15 修改: 2026-06-02 14:16
|
| libgcrypt20 |
CVE-2026-41989 |
中危 |
1.10.3-2build1 |
1.10.3-2ubuntu0.1 |
Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-23 05:16 修改: 2026-04-27 18:33
|
| libgnutls30t64 |
CVE-2026-33845 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-33846 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-05-04 10:15 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-3832 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Security bypass allows acceptance of revoked server certificates via crafted OCSP response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3832
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-30 18:16 修改: 2026-06-02 17:16
|
| libgnutls30t64 |
CVE-2026-3833 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-42009 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-05-18 13:16 修改: 2026-06-08 17:16
|
| libgnutls30t64 |
CVE-2026-42010 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Authentication Bypass via NUL Character in Username
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-05-07 12:16 修改: 2026-06-10 16:17
|
| libgnutls30t64 |
CVE-2026-42011 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Security bypass due to incorrect name constraint handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-05-07 15:16 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-42012 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-42013 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-42014 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: Fix use-after-free in gnutls_pkcs11_token_set_pin
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libgnutls30t64 |
CVE-2026-42015 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-5260 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Information disclosure via heap overread in RSA key exchange
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| libgnutls30t64 |
CVE-2026-5419 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
guntls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5419
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-06-01 21:16 修改: 2026-06-02 17:16
|
| libmount1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libnghttp2-14 |
CVE-2026-27135 |
中危 |
1.59.0-1ubuntu0.2 |
1.59.0-1ubuntu0.3 |
nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27135
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-03-18 18:16 修改: 2026-05-13 22:16
|
| libpython3.12-minimal |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.13 |
|
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2026-03-12 18:16 修改: 2026-06-11 14:29
|
| libpython3.12-minimal |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.13 |
|
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2026-03-04 23:16 修改: 2026-05-01 16:16
|
| libpython3.12-stdlib |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.13 |
|
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2026-03-12 18:16 修改: 2026-06-11 14:29
|
| libpython3.12-stdlib |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.13 |
|
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2026-03-04 23:16 修改: 2026-05-01 16:16
|
| libsmartcols1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| bsdutils |
CVE-2026-27456 |
中危 |
1:2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libssl3t64 |
CVE-2026-34182 |
中危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
|
| libssl3t64 |
CVE-2026-45445 |
中危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: AES-OCB IV Ignored on EVP_Cipher() Path
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libsystemd0 |
CVE-2026-40226 |
中危 |
255.4-1ubuntu8.15 |
255.4-1ubuntu8.16 |
systemd: systemd nspawn: Escape-to-host action via crafted config file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
|
| libudev1 |
CVE-2026-40226 |
中危 |
255.4-1ubuntu8.15 |
255.4-1ubuntu8.16 |
systemd: systemd nspawn: Escape-to-host action via crafted config file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
|
| libuuid1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libxslt1.1 |
CVE-2025-10911 |
中危 |
1.1.39-0exp1ubuntu0.24.04.3 |
|
libxslt: use-after-free with key data stored cross-RVT
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10911
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2025-09-25 16:15 修改: 2026-04-27 21:16
|
| libxslt1.1 |
CVE-2025-7425 |
中危 |
1.1.39-0exp1ubuntu0.24.04.3 |
|
libxslt: libxml2: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7425
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2025-07-10 14:15 修改: 2026-05-12 13:17
|
| mount |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| openssh-client |
CVE-2026-35385 |
中危 |
1:9.6p1-3ubuntu13.15 |
1:9.6p1-3ubuntu13.16 |
OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35385
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:02
|
| openssh-client |
CVE-2026-35386 |
中危 |
1:9.6p1-3ubuntu13.15 |
1:9.6p1-3ubuntu13.16 |
OpenSSH: OpenSSH: Arbitrary command execution via shell metacharacters in username
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35386
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:03
|
| openssh-client |
CVE-2026-35387 |
中危 |
1:9.6p1-3ubuntu13.15 |
1:9.6p1-3ubuntu13.16 |
OpenSSH: OpenSSH: Information disclosure due to unintended cryptographic algorithm usage
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35387
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:05
|
| openssh-client |
CVE-2026-35388 |
中危 |
1:9.6p1-3ubuntu13.15 |
1:9.6p1-3ubuntu13.16 |
OpenSSH: OpenSSH: Low integrity impact from unconfirmed proxy-mode multiplexing sessions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35388
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:12
|
| openssh-client |
CVE-2026-35414 |
中危 |
1:9.6p1-3ubuntu13.15 |
1:9.6p1-3ubuntu13.16 |
OpenSSH: OpenSSH: Security bypass via mishandling of authorized_keys principals option
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35414
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-04-02 18:16 修改: 2026-04-10 19:36
|
| dpkg |
CVE-2026-2219 |
中危 |
1.22.6ubuntu6.5 |
1.22.6ubuntu6.6 |
It was discovered that dpkg-deb (a component of dpkg, the Debian packa ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2219
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-03-07 09:16 修改: 2026-06-02 19:12
|
| openssl |
CVE-2026-34182 |
中危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
|
| openssl |
CVE-2026-45445 |
中危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: AES-OCB IV Ignored on EVP_Cipher() Path
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| python3-pip |
CVE-2024-35195 |
中危 |
24.0+dfsg-1ubuntu1.3 |
|
requests: subsequent requests to the same host ignore cert verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35195
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2024-05-20 21:15 修改: 2026-04-15 00:35
|
| python3-pip |
CVE-2025-66418 |
中危 |
24.0+dfsg-1ubuntu1.3 |
|
urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66418
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2025-12-05 16:15 修改: 2025-12-10 16:08
|
| python3-pip |
CVE-2025-66471 |
中危 |
24.0+dfsg-1ubuntu1.3 |
|
urllib3: urllib3 Streaming API improperly handles highly compressed data
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66471
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2025-12-05 17:16 修改: 2025-12-10 16:10
|
| python3-pip |
CVE-2026-21441 |
中危 |
24.0+dfsg-1ubuntu1.3 |
|
urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-21441
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2026-01-07 22:15 修改: 2026-01-23 09:15
|
| python3-wheel |
CVE-2026-24049 |
中危 |
0.42.0-2 |
|
wheel: wheel: Privilege Escalation or Arbitrary Code Execution via malicious wheel file unpacking
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24049
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2026-01-22 05:16 修改: 2026-02-18 14:56
|
| python3.12 |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.13 |
|
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2026-03-12 18:16 修改: 2026-06-11 14:29
|
| python3.12 |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.13 |
|
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2026-03-04 23:16 修改: 2026-05-01 16:16
|
| python3.12-minimal |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.13 |
|
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2026-03-12 18:16 修改: 2026-06-11 14:29
|
| python3.12-minimal |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.13 |
|
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2026-03-04 23:16 修改: 2026-05-01 16:16
|
| sed |
CVE-2026-5958 |
中危 |
4.9-2build1 |
4.9-2ubuntu0.24.04.1 |
sed: GNU sed TOCTOU race condition
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5958
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-20 12:16 修改: 2026-05-19 15:17
|
| tar |
CVE-2025-45582 |
中危 |
1.35+dfsg-3build1 |
|
tar: Tar path traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-45582
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2025-07-11 17:15 修改: 2025-11-02 01:15
|
| tar |
CVE-2026-5704 |
中危 |
1.35+dfsg-3build1 |
|
tar: tar: Hidden file injection via crafted archives
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-06 16:16 修改: 2026-04-22 20:08
|
| util-linux |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| openssl |
CVE-2026-34180 |
低危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42766 |
低危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42767 |
低危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42770 |
低危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: FFC-DH Peer Validation Uses Attacker-Supplied q
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-45446 |
低危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-7383 |
低危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-9076 |
低危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| passwd |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-4ubuntu3.2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
|
| libgcrypt20 |
CVE-2024-2236 |
低危 |
1.10.3-2build1 |
|
libgcrypt: vulnerable to Marvin Attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2024-03-06 22:15 修改: 2026-04-15 00:35
|
| libssl3t64 |
CVE-2026-34180 |
低危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3t64 |
CVE-2026-42766 |
低危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| login |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-4ubuntu3.2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
|
| python3-pip |
CVE-2026-1703 |
低危 |
24.0+dfsg-1ubuntu1.3 |
|
pip: pip: Information disclosure via path traversal when installing crafted wheel archives
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1703
镜像层: sha256:700057871955a383a825fb6065cd9bcb37d89f481227500226d3e3001572a49a
发布日期: 2026-02-02 15:16 修改: 2026-04-15 00:35
|
| libssl3t64 |
CVE-2026-42767 |
低危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3t64 |
CVE-2026-42770 |
低危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: FFC-DH Peer Validation Uses Attacker-Supplied q
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3t64 |
CVE-2026-45446 |
低危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3t64 |
CVE-2026-7383 |
低危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3t64 |
CVE-2026-9076 |
低危 |
3.0.13-0ubuntu3.9 |
3.0.13-0ubuntu3.11 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libicu74 |
CVE-2025-5222 |
低危 |
74.2-1ubuntu3.1 |
|
icu: Stack buffer overflow in the SRBRoot::addTag function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5222
镜像层: sha256:8df82dca505ccd2b40b7d0edc6cb7c5a828438395ff34b33514ab81705930448
发布日期: 2025-05-27 21:15 修改: 2026-04-23 00:16
|
| libsystemd0 |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.15 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
|
| liblzma5 |
CVE-2026-34743 |
低危 |
5.6.1+really5.4.5-1ubuntu0.2 |
5.6.1+really5.4.5-1ubuntu0.3 |
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-02 19:21 修改: 2026-04-15 17:33
|
| libudev1 |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.15 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:538812a4b9bd45adaac2b5e5b967daa6999aa44eb110aa32ae7c69702b906475
发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
|