ghcr.io/suwayomi/suwayomi-server:latest linux/arm64

ghcr.io/suwayomi/suwayomi-server:latest - Trivy安全扫描结果 扫描时间: 2026-07-01 17:55 温馨提示: 这是一个 linux/arm64 系统架构镜像
全部漏洞信息
低危漏洞:47 中危漏洞:81 高危漏洞:4 严重漏洞:0

系统OS: ubuntu 24.04 扫描引擎: Trivy 扫描时间: 2026-07-01 17:55

ghcr.io/suwayomi/suwayomi-server:latest (ubuntu 24.04) (ubuntu)
低危漏洞:47 中危漏洞:76 高危漏洞:2 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
libssl3t64 CVE-2026-45447 高危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-06-09 17:17 修改: 2026-06-30 03:20

openssl CVE-2026-45447 高危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-06-09 17:17 修改: 2026-06-30 03:20

curl CVE-2026-8925 中危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8925

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

curl CVE-2026-8927 中危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

jq CVE-2026-41256 中危 1.7.1-3ubuntu0.24.04.2 jq: embedded NUL truncates top-level jq programs loaded with -f

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41256

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:46

jq CVE-2026-41257 中危 1.7.1-3ubuntu0.24.04.2 jq: signed-int overflow in stack_reallocate

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41257

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:46

jq CVE-2026-43895 中危 1.7.1-3ubuntu0.24.04.2 jq: embedded NUL in jq import paths causes local redaction-policy bypass and preserves sensitive fields in published artifacts

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43895

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:50

jq CVE-2026-43896 中危 1.7.1-3ubuntu0.24.04.2 jq: stack overflow in recursive object merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43896

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:50

jq CVE-2026-44777 中危 1.7.1-3ubuntu0.24.04.2 jq: stack overflow in module loading on mutual include

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44777

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:51

libavahi-client3 CVE-2025-59529 中危 0.8-13ubuntu6.2 avahi: simple clients denial-of-service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59529

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2025-12-18 21:15 修改: 2026-06-17 09:46

libavahi-common-data CVE-2025-59529 中危 0.8-13ubuntu6.2 avahi: simple clients denial-of-service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59529

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2025-12-18 21:15 修改: 2026-06-17 09:46

libavahi-common3 CVE-2025-59529 中危 0.8-13ubuntu6.2 avahi: simple clients denial-of-service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59529

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2025-12-18 21:15 修改: 2026-06-17 09:46

libblkid1 CVE-2026-27456 中危 2.39.3-9ubuntu6.5 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libc-bin CVE-2026-4046 中危 2.39-0ubuntu8.7 glibc: glibc: Denial of Service via iconv() function with specific character sets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55

libc-bin CVE-2026-4437 中危 2.39-0ubuntu8.7 glibc: glibc: Incorrect DNS response parsing via crafted DNS server response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56

libc-bin CVE-2026-4438 中危 2.39-0ubuntu8.7 glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56

libc-bin CVE-2026-5435 中危 2.39-0ubuntu8.7 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59

libc-bin CVE-2026-6238 中危 2.39-0ubuntu8.7 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17

libc6 CVE-2026-4046 中危 2.39-0ubuntu8.7 glibc: glibc: Denial of Service via iconv() function with specific character sets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55

libc6 CVE-2026-4437 中危 2.39-0ubuntu8.7 glibc: glibc: Incorrect DNS response parsing via crafted DNS server response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56

libc6 CVE-2026-4438 中危 2.39-0ubuntu8.7 glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56

libc6 CVE-2026-5435 中危 2.39-0ubuntu8.7 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59

libc6 CVE-2026-6238 中危 2.39-0ubuntu8.7 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17

libcurl4t64 CVE-2026-11856 中危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11856

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl4t64 CVE-2026-8925 中危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8925

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl4t64 CVE-2026-8927 中危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libexpat1 CVE-2025-66382 中危 2.6.1-2ubuntu0.4 libexpat: libexpat: Denial of service via crafted file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2025-11-28 07:15 修改: 2026-06-17 09:56

libgcrypt20 CVE-2026-41989 中危 1.10.3-2build1 1.10.3-2ubuntu0.1 Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-23 05:16 修改: 2026-06-17 10:47

libgnutls30t64 CVE-2026-33845 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-30 18:16 修改: 2026-06-30 03:18

libgnutls30t64 CVE-2026-33846 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-05-04 10:15 修改: 2026-06-30 03:18

libgnutls30t64 CVE-2026-3832 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Security bypass allows acceptance of revoked server certificates via crafted OCSP response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3832

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-30 18:16 修改: 2026-06-24 17:16

libgnutls30t64 CVE-2026-3833 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-30 18:16 修改: 2026-06-30 03:19

libgnutls30t64 CVE-2026-42009 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-05-18 13:16 修改: 2026-06-30 17:16

libgnutls30t64 CVE-2026-42010 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Authentication Bypass via NUL Character in Username

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-05-07 12:16 修改: 2026-06-30 03:19

libgnutls30t64 CVE-2026-42011 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Security bypass due to incorrect name constraint handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-05-07 15:16 修改: 2026-06-30 03:19

libgnutls30t64 CVE-2026-42012 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-05-26 22:16 修改: 2026-06-30 03:19

libgnutls30t64 CVE-2026-42013 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-05-26 22:16 修改: 2026-06-30 03:19

libgnutls30t64 CVE-2026-42014 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Use-after-free in gnutls_pkcs11_token_set_pin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-06-16 02:16 修改: 2026-06-30 03:19

libgnutls30t64 CVE-2026-42015 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-05-26 22:16 修改: 2026-06-30 03:19

libgnutls30t64 CVE-2026-5260 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Information disclosure via heap overread in RSA key exchange

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-05-26 22:16 修改: 2026-06-30 03:21

libgnutls30t64 CVE-2026-5419 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5419

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-06-01 21:16 修改: 2026-06-29 12:16

libgraphite2-3 CVE-2026-50593 中危 1.3.14-2build1 1.3.14-2ubuntu0.24.04.1 Graphite before 1.3.15 has an integer underflow and resultant out-of-b ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50593

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-06-05 04:17 修改: 2026-06-17 10:57

libjq1 CVE-2026-41256 中危 1.7.1-3ubuntu0.24.04.2 jq: embedded NUL truncates top-level jq programs loaded with -f

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41256

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:46

libjq1 CVE-2026-41257 中危 1.7.1-3ubuntu0.24.04.2 jq: signed-int overflow in stack_reallocate

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41257

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:46

libjq1 CVE-2026-43895 中危 1.7.1-3ubuntu0.24.04.2 jq: embedded NUL in jq import paths causes local redaction-policy bypass and preserves sensitive fields in published artifacts

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43895

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:50

libjq1 CVE-2026-43896 中危 1.7.1-3ubuntu0.24.04.2 jq: stack overflow in recursive object merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43896

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:50

libjq1 CVE-2026-44777 中危 1.7.1-3ubuntu0.24.04.2 jq: stack overflow in module loading on mutual include

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44777

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:51

libmount1 CVE-2026-27456 中危 2.39.3-9ubuntu6.5 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libnss3 CVE-2026-12318 中危 2:3.98-1ubuntu0.1 2:3.98-1ubuntu0.2 firefox: thunderbird: Incorrect boundary conditions in the Libraries component in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12318

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-06-16 13:16 修改: 2026-06-17 14:26

libp11-kit0 CVE-2026-13757 中危 0.25.3-4ubuntu2.1 p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-06-29 19:16 修改: 2026-06-29 20:17

libpixman-1-0 CVE-2023-37769 中危 0.42.2-1build1 stress-test master commit e4c878 was discovered to contain a FPE vulne ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37769

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2023-07-17 20:15 修改: 2026-06-17 06:08

libsmartcols1 CVE-2026-27456 中危 2.39.3-9ubuntu6.5 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libsqlite3-0 CVE-2026-11822 中危 3.45.1-1ubuntu2.5 3.45.1-1ubuntu2.6 SQLite before 3.53.2 contains memory corruption vulnerabilities in the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11822

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-06-09 20:16 修改: 2026-06-17 10:14

libsqlite3-0 CVE-2026-11824 中危 3.45.1-1ubuntu2.5 3.45.1-1ubuntu2.6 SQLite before 3.53.2 contains a heap-based buffer overflow vulnerabili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11824

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-06-09 20:16 修改: 2026-06-17 10:14

bsdutils CVE-2026-27456 中危 1:2.39.3-9ubuntu6.5 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libssl3t64 CVE-2026-34182 中危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38

libssl3t64 CVE-2026-45445 中危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: AES-OCB IV Ignored on EVP_Cipher() Path

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52

libsystemd0 CVE-2026-40226 中危 255.4-1ubuntu8.15 255.4-1ubuntu8.16 systemd: systemd nspawn: Escape-to-host action via crafted config file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libudev1 CVE-2026-40226 中危 255.4-1ubuntu8.15 255.4-1ubuntu8.16 systemd: systemd nspawn: Escape-to-host action via crafted config file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libuuid1 CVE-2026-27456 中危 2.39.3-9ubuntu6.5 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libxml2 CVE-2026-6653 中危 2.9.14+dfsg-1.3ubuntu3.7 2.9.14+dfsg-1.3ubuntu3.8 libxml2: mingw-libxml2: libxml2: Denial of Service via crafted XML input due to use-after-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6653

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-06-22 14:17 修改: 2026-06-22 18:16

libxpm4 CVE-2026-4367 中危 1:3.5.17-1build2 libXpm: libXpm: Denial of Service via out-of-bounds read in XPM file parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4367

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-06-16 19:16 修改: 2026-06-26 22:16

locales CVE-2026-4046 中危 2.39-0ubuntu8.7 glibc: glibc: Denial of Service via iconv() function with specific character sets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55

locales CVE-2026-4437 中危 2.39-0ubuntu8.7 glibc: glibc: Incorrect DNS response parsing via crafted DNS server response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56

locales CVE-2026-4438 中危 2.39-0ubuntu8.7 glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56

locales CVE-2026-5435 中危 2.39-0ubuntu8.7 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59

locales CVE-2026-6238 中危 2.39-0ubuntu8.7 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17

mount CVE-2026-27456 中危 2.39.3-9ubuntu6.5 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

curl CVE-2026-11856 中危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11856

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

openssl CVE-2026-34182 中危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38

openssl CVE-2026-45445 中危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: AES-OCB IV Ignored on EVP_Cipher() Path

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52

p11-kit CVE-2026-13757 中危 0.25.3-4ubuntu2.1 p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-06-29 19:16 修改: 2026-06-29 20:17

p11-kit-modules CVE-2026-13757 中危 0.25.3-4ubuntu2.1 p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-06-29 19:16 修改: 2026-06-29 20:17

perl-base CVE-2026-42496 中危 5.38.2-3.2ubuntu0.2 5.38.2-3.2ubuntu0.3 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-05-26 02:16 修改: 2026-06-30 03:19

perl-base CVE-2026-8376 中危 5.38.2-3.2ubuntu0.2 5.38.2-3.2ubuntu0.3 Perl versions through 5.43.10 have a heap buffer overflow when compili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03

tar CVE-2025-45582 中危 1.35+dfsg-3build1 tar: Tar path traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-45582

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2025-07-11 17:15 修改: 2026-06-17 09:25

tar CVE-2026-5704 中危 1.35+dfsg-3build1 1.35+dfsg-3ubuntu0.1 tar: tar: Hidden file injection via crafted archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-06 16:16 修改: 2026-06-17 10:59

util-linux CVE-2026-27456 中危 2.39.3-9ubuntu6.5 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libavahi-client3 CVE-2024-52616 低危 0.8-13ubuntu6.2 avahi: Avahi Wide-Area DNS Predictable Transaction IDs

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2024-11-21 21:15 修改: 2026-06-29 23:16

curl CVE-2026-10536 低危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libavahi-common-data CVE-2024-52615 低危 0.8-13ubuntu6.2 avahi: Avahi Wide-Area DNS Uses Constant Source Port

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2024-11-21 21:15 修改: 2026-06-29 23:16

libavahi-common-data CVE-2024-52616 低危 0.8-13ubuntu6.2 avahi: Avahi Wide-Area DNS Predictable Transaction IDs

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2024-11-21 21:15 修改: 2026-06-29 23:16

curl CVE-2026-12064 低危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12064

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libssl3t64 CVE-2026-34180 低危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38

libssl3t64 CVE-2026-42766 低危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: Possible NULL Dereference in Password-Based CMS Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

libssl3t64 CVE-2026-42767 低危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

libssl3t64 CVE-2026-42770 低危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: FFC-DH Peer Validation Uses Attacker-Supplied q

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

libssl3t64 CVE-2026-45446 低危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52

libssl3t64 CVE-2026-7383 低危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:02

libssl3t64 CVE-2026-9076 低危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:04

libavahi-common3 CVE-2024-52615 低危 0.8-13ubuntu6.2 avahi: Avahi Wide-Area DNS Uses Constant Source Port

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2024-11-21 21:15 修改: 2026-06-29 23:16

libsystemd0 CVE-2026-40228 低危 255.4-1ubuntu8.15 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libcairo2 CVE-2017-7475 低危 1.18.0-3build1 cairo: NULL pointer dereference with a crafted font file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2017-05-19 20:29 修改: 2026-06-17 01:24

libudev1 CVE-2026-40228 低危 255.4-1ubuntu8.15 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libcairo2 CVE-2018-18064 低危 1.18.0-3build1 cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2018-10-08 18:29 修改: 2026-06-17 01:46

libavahi-common3 CVE-2024-52616 低危 0.8-13ubuntu6.2 avahi: Avahi Wide-Area DNS Predictable Transaction IDs

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2024-11-21 21:15 修改: 2026-06-29 23:16

curl CVE-2026-8286 低危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

curl CVE-2026-8458 低危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl4t64 CVE-2026-10536 低危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl4t64 CVE-2026-12064 低危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12064

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libharfbuzz0b CVE-2026-22693 低危 8.3.0-2build2 harfbuzz: Null Pointer Dereference in harfbuzz

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22693

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2026-01-10 06:15 修改: 2026-06-17 10:20

libicu74 CVE-2025-5222 低危 74.2-1ubuntu3.1 icu: Stack buffer overflow in the SRBRoot::addTag function

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5222

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2025-05-27 21:15 修改: 2026-06-30 05:17

login CVE-2024-56433 低危 1:4.13+dfsg1-4ubuntu3.2 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12

libcurl4t64 CVE-2026-8286 低危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl4t64 CVE-2026-8458 低危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl4t64 CVE-2026-8924 低危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libcurl4t64 CVE-2026-9547 低危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

openssl CVE-2026-34180 低危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38

openssl CVE-2026-42766 低危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: Possible NULL Dereference in Password-Based CMS Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

openssl CVE-2026-42767 低危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

openssl CVE-2026-42770 低危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: FFC-DH Peer Validation Uses Attacker-Supplied q

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

openssl CVE-2026-45446 低危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52

openssl CVE-2026-7383 低危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:02

openssl CVE-2026-9076 低危 3.0.13-0ubuntu3.9 3.0.13-0ubuntu3.11 openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076

镜像层: sha256:25aca807c3498d425b3fe126d622e75fe7b755ab583c5815f9628273dff93e24

发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:04

libelf1t64 CVE-2025-1352 低危 0.190-1.1ubuntu0.1 elfutils: GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1352

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2025-02-16 15:15 修改: 2026-06-17 08:38

liblzma5 CVE-2026-34743 低危 5.6.1+really5.4.5-1ubuntu0.2 5.6.1+really5.4.5-1ubuntu0.3 xz: XZ Utils: Denial of Service via buffer overflow in index decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-04-02 19:21 修改: 2026-06-17 10:39

passwd CVE-2024-56433 低危 1:4.13+dfsg1-4ubuntu3.2 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12

libelf1t64 CVE-2025-1376 低危 0.190-1.1ubuntu0.1 elfutils: GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1376

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2025-02-17 05:15 修改: 2026-06-17 08:39

curl CVE-2026-8924 低危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

curl CVE-2026-9547 低危 8.5.0-2ubuntu10.9

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547

镜像层: sha256:a494a688c853974f3903e6520a3ae8a5ff42baaace347774b5c16629e5f6268b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libgcrypt20 CVE-2024-2236 低危 1.10.3-2build1 libgcrypt: vulnerable to Marvin Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2024-03-06 22:15 修改: 2026-06-17 07:24

libavahi-client3 CVE-2024-52615 低危 0.8-13ubuntu6.2 avahi: Avahi Wide-Area DNS Uses Constant Source Port

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2024-11-21 21:15 修改: 2026-06-29 23:16

xserver-common CVE-2023-5574 低危 2:21.1.12-1ubuntu1.6 xorg-x11-server: Use-after-free bug in DamageDestroy

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5574

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2023-10-25 20:15 修改: 2026-06-23 18:17

xvfb CVE-2023-5574 低危 2:21.1.12-1ubuntu1.6 xorg-x11-server: Use-after-free bug in DamageDestroy

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5574

镜像层: sha256:e9e0d8f8033bfb600524c55f5bd2a7f0dfea10f71bc97239836086a6fc1855e2

发布日期: 2023-10-25 20:15 修改: 2026-06-23 18:17

zlib1g CVE-2026-27171 低危 1:1.3.dfsg-3.1ubuntu2.1 zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171

镜像层: sha256:2d8834226313616cc27c8a08ca876096cf83f18090b5fa07fd65dba017ec9e5e

发布日期: 2026-02-18 04:16 修改: 2026-06-17 10:26

Java (jar)
低危漏洞:0 中危漏洞:5 高危漏洞:2 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
com.fasterxml.jackson.core:jackson-databind CVE-2026-54512 高危 2.21.3 2.18.8, 3.1.4, 2.21.4 jackson-databind: jackson-databind: Arbitrary code execution via PolymorphicTypeValidator bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54512

镜像层: sha256:06b3eceef277d64d8aeff202d114c67dc1760aee5bd4b2862e153dd3f6c95e40

发布日期: 2026-06-23 21:17 修改: 2026-06-27 21:01

com.fasterxml.jackson.core:jackson-databind CVE-2026-54513 高危 2.21.3 2.18.8, 2.21.4, 3.1.4 jackson-databind: Jackson-databind: Security bypass allows arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54513

镜像层: sha256:06b3eceef277d64d8aeff202d114c67dc1760aee5bd4b2862e153dd3f6c95e40

发布日期: 2026-06-23 21:17 修改: 2026-06-30 03:21

com.fasterxml.jackson.core:jackson-databind CVE-2026-54514 中危 2.21.3 2.18.8, 2.21.4, 3.1.4 jackson-databind: jackson-databind: Information Disclosure via Eager DNS Resolution

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54514

镜像层: sha256:06b3eceef277d64d8aeff202d114c67dc1760aee5bd4b2862e153dd3f6c95e40

发布日期: 2026-06-23 21:17 修改: 2026-06-27 20:55

com.fasterxml.jackson.core:jackson-databind CVE-2026-54515 中危 2.21.3 3.1.4, 2.18.9, 2.21.5, 2.22.1 jackson-databind: jackson-databind: Ignored properties can be unexpectedly modified

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54515

镜像层: sha256:06b3eceef277d64d8aeff202d114c67dc1760aee5bd4b2862e153dd3f6c95e40

发布日期: 2026-06-23 21:17 修改: 2026-06-29 13:38

com.fasterxml.jackson.core:jackson-databind CVE-2026-54516 中危 2.21.3 2.21.4, 3.1.4 jackson-databind: jackson-databind: Security bypass due to improper handling of renamed properties

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54516

镜像层: sha256:06b3eceef277d64d8aeff202d114c67dc1760aee5bd4b2862e153dd3f6c95e40

发布日期: 2026-06-23 21:17 修改: 2026-06-27 20:52

com.fasterxml.jackson.core:jackson-databind CVE-2026-54517 中危 2.21.3 2.21.4, 3.1.4 jackson-databind: jackson-databind: Information disclosure via improper JsonView filter application

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54517

镜像层: sha256:06b3eceef277d64d8aeff202d114c67dc1760aee5bd4b2862e153dd3f6c95e40

发布日期: 2026-06-23 21:17 修改: 2026-06-27 20:51

com.fasterxml.jackson.core:jackson-databind CVE-2026-54518 中危 2.21.3 2.21.4 jackson-databind: jackson-databind: Information disclosure and data manipulation via view-based access control bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54518

镜像层: sha256:06b3eceef277d64d8aeff202d114c67dc1760aee5bd4b2862e153dd3f6c95e40

发布日期: 2026-06-23 22:16 修改: 2026-06-27 20:49

检测到您正在使用广告拦截插件,本站为公益站点,依赖广告维持运转 🙏 查看如何关闭 ×