ghcr.io/stirling-tools/s-pdf:latest-fat linux/amd64

ghcr.io/stirling-tools/s-pdf:latest-fat - Trivy安全扫描结果 扫描时间: 2024-11-02 22:36
全部漏洞信息
低危漏洞:5 中危漏洞:9 高危漏洞:4 严重漏洞:0

系统OS: alpine 3.20.3 扫描引擎: Trivy 扫描时间: 2024-11-02 22:36

ghcr.io/stirling-tools/s-pdf:latest-fat (alpine 3.20.3) (alpine)
低危漏洞:4 中危漏洞:8 高危漏洞:2 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
cups-libs CVE-2024-47175 高危 2.4.9-r1 2.4.10-r1 cups: libppd: remote command injection via attacker controlled data in PPD file

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47175

镜像层: sha256:715dfc71263c781ca36f21117de32105b1aca60595f37dd9fa669472e319f2b6

发布日期: 2024-09-26 22:15 修改: 2024-09-30 12:46
libpq CVE-2024-7348 高危 16.3-r0 16.4-r0 postgresql: PostgreSQL relation replacement during pg_dump executes arbitrary SQL

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7348

镜像层: sha256:715dfc71263c781ca36f21117de32105b1aca60595f37dd9fa669472e319f2b6

发布日期: 2024-08-08 13:15 修改: 2024-08-12 15:54
busybox-binsh CVE-2023-42364 中危 1.36.1-r29 1.36.1-r30 busybox: use-after-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42364

镜像层: sha256:63ca1fbb43ae5034640e5e6cb3e083e05c290072c5366fcaa9d62435a4cced85

发布日期: 2023-11-27 23:15 修改: 2024-10-11 21:36
busybox-binsh CVE-2023-42365 中危 1.36.1-r29 1.36.1-r30 busybox: use-after-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42365

镜像层: sha256:63ca1fbb43ae5034640e5e6cb3e083e05c290072c5366fcaa9d62435a4cced85

发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
busybox CVE-2023-42364 中危 1.36.1-r29 1.36.1-r30 busybox: use-after-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42364

镜像层: sha256:63ca1fbb43ae5034640e5e6cb3e083e05c290072c5366fcaa9d62435a4cced85

发布日期: 2023-11-27 23:15 修改: 2024-10-11 21:36
busybox CVE-2023-42365 中危 1.36.1-r29 1.36.1-r30 busybox: use-after-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42365

镜像层: sha256:63ca1fbb43ae5034640e5e6cb3e083e05c290072c5366fcaa9d62435a4cced85

发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
qt6-qtbase CVE-2024-39936 中危 6.6.3-r1 6.7.2-r1 qtbase: qtbase: Delay any communication until encrypted() can be responded to

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-39936

镜像层: sha256:715dfc71263c781ca36f21117de32105b1aca60595f37dd9fa669472e319f2b6

发布日期: 2024-07-04 21:15 修改: 2024-07-08 16:41
qt6-qtbase-x11 CVE-2024-39936 中危 6.6.3-r1 6.7.2-r1 qtbase: qtbase: Delay any communication until encrypted() can be responded to

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-39936

镜像层: sha256:715dfc71263c781ca36f21117de32105b1aca60595f37dd9fa669472e319f2b6

发布日期: 2024-07-04 21:15 修改: 2024-07-08 16:41
ssl_client CVE-2023-42364 中危 1.36.1-r29 1.36.1-r30 busybox: use-after-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42364

镜像层: sha256:63ca1fbb43ae5034640e5e6cb3e083e05c290072c5366fcaa9d62435a4cced85

发布日期: 2023-11-27 23:15 修改: 2024-10-11 21:36
ssl_client CVE-2023-42365 中危 1.36.1-r29 1.36.1-r30 busybox: use-after-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42365

镜像层: sha256:63ca1fbb43ae5034640e5e6cb3e083e05c290072c5366fcaa9d62435a4cced85

发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
libcrypto3 CVE-2024-9143 低危 3.3.2-r1 3.3.2-r3 openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:715dfc71263c781ca36f21117de32105b1aca60595f37dd9fa669472e319f2b6

发布日期: 2024-10-16 17:15 修改: 2024-10-18 12:53
libssl3 CVE-2024-9143 低危 3.3.2-r1 3.3.2-r3 openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:715dfc71263c781ca36f21117de32105b1aca60595f37dd9fa669472e319f2b6

发布日期: 2024-10-16 17:15 修改: 2024-10-18 12:53
openssl CVE-2024-9143 低危 3.3.2-r1 3.3.2-r3 openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:715dfc71263c781ca36f21117de32105b1aca60595f37dd9fa669472e319f2b6

发布日期: 2024-10-16 17:15 修改: 2024-10-18 12:53
openssl-dev CVE-2024-9143 低危 3.3.2-r1 3.3.2-r3 openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:715dfc71263c781ca36f21117de32105b1aca60595f37dd9fa669472e319f2b6

发布日期: 2024-10-16 17:15 修改: 2024-10-18 12:53
Java (jar)
低危漏洞:1 中危漏洞:1 高危漏洞:2 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
com.h2database:h2 CVE-2022-45868 高危 2.1.214 2.2.220 The web-based admin console in H2 Database Engine before 2.2.220 can b ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45868

镜像层: sha256:170ee16072f0888a79fe0ba868d8e4799d227d9a78a3fad7abcd123a6b4264bc

发布日期: 2022-11-23 21:15 修改: 2024-08-03 15:15
commons-io:commons-io CVE-2024-47554 高危 2.8.0 2.14.0 apache-commons-io: Possible denial of service attack on untrusted input to XmlStreamReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47554

镜像层: sha256:170ee16072f0888a79fe0ba868d8e4799d227d9a78a3fad7abcd123a6b4264bc

发布日期: 2024-10-03 12:15 修改: 2024-10-04 13:50
com.google.guava:guava CVE-2023-2976 中危 31.1-jre 32.0.0-android guava: insecure temporary directory creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2976

镜像层: sha256:170ee16072f0888a79fe0ba868d8e4799d227d9a78a3fad7abcd123a6b4264bc

发布日期: 2023-06-14 18:15 修改: 2024-02-13 19:15
com.google.guava:guava CVE-2020-8908 低危 31.1-jre 32.0.0-android guava: local information disclosure via temporary directory created with unsafe permissions

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8908

镜像层: sha256:170ee16072f0888a79fe0ba868d8e4799d227d9a78a3fad7abcd123a6b4264bc

发布日期: 2020-12-10 23:15 修改: 2023-08-02 17:30
Python (python-pkg)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
usr/bin/pngquant (rustbinary)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息