| libpython3.13-minimal |
CVE-2026-7210 |
严重 |
3.13.5-2+deb13u2 |
|
python: expat: Python/Expat: Denial of Service via crafted XML document
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-11 18:16 修改: 2026-06-01 14:32
|
| libpython3.13-stdlib |
CVE-2026-7210 |
严重 |
3.13.5-2+deb13u2 |
|
python: expat: Python/Expat: Denial of Service via crafted XML document
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-11 18:16 修改: 2026-06-01 14:32
|
| perl-base |
CVE-2026-42496 |
严重 |
5.40.1-6 |
|
perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
|
| perl-base |
CVE-2026-8376 |
严重 |
5.40.1-6 |
|
Perl versions through 5.43.10 have a heap buffer overflow when compili ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-05-26 00:16 修改: 2026-05-27 19:16
|
| python3.13 |
CVE-2026-7210 |
严重 |
3.13.5-2+deb13u2 |
|
python: expat: Python/Expat: Denial of Service via crafted XML document
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-11 18:16 修改: 2026-06-01 14:32
|
| python3.13-minimal |
CVE-2026-7210 |
严重 |
3.13.5-2+deb13u2 |
|
python: expat: Python/Expat: Denial of Service via crafted XML document
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-11 18:16 修改: 2026-06-01 14:32
|
| gpg |
CVE-2026-24882 |
高危 |
2.4.7-21+deb13u1+b3 |
|
GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
|
| gpg-agent |
CVE-2026-24882 |
高危 |
2.4.7-21+deb13u1+b3 |
|
GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
|
| gpg-wks-client |
CVE-2026-24882 |
高危 |
2.4.7-21+deb13u1+b3 |
|
GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
|
| gpgconf |
CVE-2026-24882 |
高危 |
2.4.7-21+deb13u1+b3 |
|
GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
|
| gpgsm |
CVE-2026-24882 |
高危 |
2.4.7-21+deb13u1+b3 |
|
GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
|
| gpgv |
CVE-2026-24882 |
高危 |
2.4.7-21+deb13u1+b3 |
|
GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
|
| libcurl4t64 |
CVE-2026-5773 |
高危 |
8.14.1-2+deb13u3 |
|
curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
|
| libcurl4t64 |
CVE-2026-6276 |
高危 |
8.14.1-2+deb13u3 |
|
curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
|
| libexpat1 |
CVE-2025-59375 |
高危 |
2.7.1-2 |
|
firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59375
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2025-09-15 03:15 修改: 2026-05-12 13:17
|
| libexpat1 |
CVE-2026-25210 |
高危 |
2.7.1-2 |
|
libexpat: libexpat: Information disclosure and data integrity issues due to integer overflow in buffer reallocation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25210
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-30 07:16 修改: 2026-06-02 14:16
|
| libexpat1 |
CVE-2026-45186 |
高危 |
2.7.1-2 |
|
libexpat: denial of service via crafted XML input
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45186
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-10 07:16 修改: 2026-05-14 17:20
|
| libncursesw6 |
CVE-2025-69720 |
高危 |
6.5+20250216-2 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:bffa3c30a00bb534b2e3637bd26d9a75e095172be7d0b33924f1a61bf6cb2120
发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
|
| curl |
CVE-2026-5773 |
高危 |
8.14.1-2+deb13u3 |
|
curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
|
| curl |
CVE-2026-6276 |
高危 |
8.14.1-2+deb13u3 |
|
curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
|
| libssh2-1t64 |
CVE-2026-7598 |
高危 |
1.11.1-1 |
|
libssh2: integer overflow via large username or password arguments
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7598
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-01 22:16 修改: 2026-05-07 01:47
|
| libtinfo6 |
CVE-2025-69720 |
高危 |
6.5+20250216-2 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
|
| ncurses-base |
CVE-2025-69720 |
高危 |
6.5+20250216-2 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
|
| ncurses-bin |
CVE-2025-69720 |
高危 |
6.5+20250216-2 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
|
| dirmngr |
CVE-2026-24882 |
高危 |
2.4.7-21+deb13u1+b3 |
|
GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
|
| gnupg |
CVE-2026-24882 |
高危 |
2.4.7-21+deb13u1 |
|
GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
|
| perl-base |
CVE-2026-42497 |
高危 |
5.40.1-6 |
|
Archive::Tar versions before 3.08 for Perl extract hardlinks to attack ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
|
| perl-base |
CVE-2026-48959 |
高危 |
5.40.1-6 |
|
IO::Uncompress::Unzip versions before 2.220 for Perl allow CPU exhaust ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
|
| perl-base |
CVE-2026-48962 |
高危 |
5.40.1-6 |
|
perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-05-27 04:16 修改: 2026-05-27 19:38
|
| perl-base |
CVE-2026-9538 |
高危 |
5.40.1-6 |
|
Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
|
| gnupg-l10n |
CVE-2026-24882 |
高危 |
2.4.7-21+deb13u1 |
|
GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
|
| gnupg-utils |
CVE-2026-24882 |
高危 |
2.4.7-21+deb13u1+b3 |
|
GnuPG: GnuPG: Stack-based buffer overflow in tpm2daemon allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24882
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-27 19:16 修改: 2026-02-06 17:50
|
| gpgv |
CVE-2025-68972 |
中危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: GnuPG: Signature bypass via form feed character in signed messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
|
| libblkid1 |
CVE-2026-27456 |
中危 |
2.41-5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libblkid1 |
CVE-2026-3184 |
中危 |
2.41-5 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| libbz2-1.0 |
CVE-2026-42250 |
中危 |
1.0.8-6 |
|
bzip2: bzip2: Denial of Service in bzip2recover via a specially crafted file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42250
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-05-28 14:16 修改: 2026-06-05 08:16
|
| libc-bin |
CVE-2026-5435 |
中危 |
2.41-12+deb13u3 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| libc-bin |
CVE-2026-5450 |
中危 |
2.41-12+deb13u3 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| libc-bin |
CVE-2026-5928 |
中危 |
2.41-12+deb13u3 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| libc-bin |
CVE-2026-6238 |
中危 |
2.41-12+deb13u3 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
|
| libc6 |
CVE-2026-5435 |
中危 |
2.41-12+deb13u3 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| libc6 |
CVE-2026-5450 |
中危 |
2.41-12+deb13u3 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| libc6 |
CVE-2026-5928 |
中危 |
2.41-12+deb13u3 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| libc6 |
CVE-2026-6238 |
中危 |
2.41-12+deb13u3 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
|
| curl |
CVE-2026-7168 |
中危 |
8.14.1-2+deb13u3 |
|
curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
|
| bsdutils |
CVE-2026-27456 |
中危 |
1:2.41-5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libcurl4t64 |
CVE-2026-1965 |
中危 |
8.14.1-2+deb13u3 |
|
curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
|
| libcurl4t64 |
CVE-2026-3783 |
中危 |
8.14.1-2+deb13u3 |
|
curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
|
| libcurl4t64 |
CVE-2026-3784 |
中危 |
8.14.1-2+deb13u3 |
|
curl: curl: Unauthorized access due to improper HTTP proxy connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
|
| libcurl4t64 |
CVE-2026-3805 |
中危 |
8.14.1-2+deb13u3 |
|
curl: curl: Arbitrary code execution or Denial of Service via use-after-free in SMB request handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3805
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:08
|
| libcurl4t64 |
CVE-2026-4873 |
中危 |
8.14.1-2+deb13u3 |
|
curl: curl: Information disclosure due to incorrect TLS connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
|
| libcurl4t64 |
CVE-2026-5545 |
中危 |
8.14.1-2+deb13u3 |
|
curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
|
| libcurl4t64 |
CVE-2026-6253 |
中危 |
8.14.1-2+deb13u3 |
|
curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
|
| libcurl4t64 |
CVE-2026-6429 |
中危 |
8.14.1-2+deb13u3 |
|
curl: libcurl: Credential leak via reused proxy connection during HTTP redirects
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
|
| libcurl4t64 |
CVE-2026-7168 |
中危 |
8.14.1-2+deb13u3 |
|
curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
|
| dirmngr |
CVE-2025-68972 |
中危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: GnuPG: Signature bypass via form feed character in signed messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
|
| bsdutils |
CVE-2026-3184 |
中危 |
1:2.41-5 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| gnupg |
CVE-2025-68972 |
中危 |
2.4.7-21+deb13u1 |
|
gnupg: GnuPG: Signature bypass via form feed character in signed messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
|
| libexpat1 |
CVE-2025-66382 |
中危 |
2.7.1-2 |
|
libexpat: libexpat: Denial of service via crafted file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2025-11-28 07:15 修改: 2026-06-02 14:16
|
| libexpat1 |
CVE-2026-32776 |
中危 |
2.7.1-2 |
|
libexpat: libexpat: Denial of Service due to NULL pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32776
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
|
| libexpat1 |
CVE-2026-32777 |
中危 |
2.7.1-2 |
|
libexpat: libexpat: Denial of Service via infinite loop in DTD content parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32777
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
|
| libexpat1 |
CVE-2026-32778 |
中危 |
2.7.1-2 |
|
libexpat: libexpat: Denial of Service via NULL pointer dereference after out-of-memory condition
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32778
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
|
| libexpat1 |
CVE-2026-50219 |
中危 |
2.7.1-2 |
|
expat: libexpat: Use-after-free vulnerability due to improper handler call depth tracking
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50219
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-06-04 06:16 修改: 2026-06-04 18:39
|
| liblastlog2-2 |
CVE-2026-27456 |
中危 |
2.41-5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| liblastlog2-2 |
CVE-2026-3184 |
中危 |
2.41-5 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| liblzma5 |
CVE-2026-34743 |
中危 |
5.8.1-1 |
|
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-02 19:21 修改: 2026-04-15 17:33
|
| libmount1 |
CVE-2026-27456 |
中危 |
2.41-5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libmount1 |
CVE-2026-3184 |
中危 |
2.41-5 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| curl |
CVE-2026-1965 |
中危 |
8.14.1-2+deb13u3 |
|
curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
|
| gnupg-l10n |
CVE-2025-68972 |
中危 |
2.4.7-21+deb13u1 |
|
gnupg: GnuPG: Signature bypass via form feed character in signed messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
|
| libpython3.13-minimal |
CVE-2025-12781 |
中危 |
3.13.5-2+deb13u2 |
|
cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-21 20:16 修改: 2026-02-02 17:25
|
| libpython3.13-minimal |
CVE-2025-15366 |
中危 |
3.13.5-2+deb13u2 |
|
cpython: IMAP command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| libpython3.13-minimal |
CVE-2025-15367 |
中危 |
3.13.5-2+deb13u2 |
|
cpython: POP3 command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| libpython3.13-minimal |
CVE-2026-1502 |
中危 |
3.13.5-2+deb13u2 |
|
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-04-10 18:16 修改: 2026-06-04 15:16
|
| libpython3.13-minimal |
CVE-2026-3276 |
中危 |
3.13.5-2+deb13u2 |
|
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-06-03 16:16 修改: 2026-06-04 18:16
|
| libpython3.13-minimal |
CVE-2026-7774 |
中危 |
3.13.5-2+deb13u2 |
|
tarfile.data_filter could be bypassed using crafted link entries, incl ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-06-04 16:16 修改: 2026-06-04 20:16
|
| libpython3.13-minimal |
CVE-2026-8328 |
中危 |
3.13.5-2+deb13u2 |
|
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 21:16 修改: 2026-05-14 16:21
|
| curl |
CVE-2026-3783 |
中危 |
8.14.1-2+deb13u3 |
|
curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
|
| libpython3.13-stdlib |
CVE-2025-12781 |
中危 |
3.13.5-2+deb13u2 |
|
cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-21 20:16 修改: 2026-02-02 17:25
|
| libpython3.13-stdlib |
CVE-2025-15366 |
中危 |
3.13.5-2+deb13u2 |
|
cpython: IMAP command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| libpython3.13-stdlib |
CVE-2025-15367 |
中危 |
3.13.5-2+deb13u2 |
|
cpython: POP3 command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| libpython3.13-stdlib |
CVE-2026-1502 |
中危 |
3.13.5-2+deb13u2 |
|
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-04-10 18:16 修改: 2026-06-04 15:16
|
| libpython3.13-stdlib |
CVE-2026-3276 |
中危 |
3.13.5-2+deb13u2 |
|
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-06-03 16:16 修改: 2026-06-04 18:16
|
| libpython3.13-stdlib |
CVE-2026-7774 |
中危 |
3.13.5-2+deb13u2 |
|
tarfile.data_filter could be bypassed using crafted link entries, incl ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-06-04 16:16 修改: 2026-06-04 20:16
|
| libpython3.13-stdlib |
CVE-2026-8328 |
中危 |
3.13.5-2+deb13u2 |
|
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 21:16 修改: 2026-05-14 16:21
|
| libsmartcols1 |
CVE-2026-27456 |
中危 |
2.41-5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libsmartcols1 |
CVE-2026-3184 |
中危 |
2.41-5 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| gnupg-utils |
CVE-2025-68972 |
中危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: GnuPG: Signature bypass via form feed character in signed messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
|
| curl |
CVE-2026-3784 |
中危 |
8.14.1-2+deb13u3 |
|
curl: curl: Unauthorized access due to improper HTTP proxy connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
|
| libuuid1 |
CVE-2026-27456 |
中危 |
2.41-5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libuuid1 |
CVE-2026-3184 |
中危 |
2.41-5 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| libxml2 |
CVE-2026-0990 |
中危 |
2.12.7+dfsg+really2.9.14-2.1+deb13u2 |
|
libxml2: libxml2: Denial of Service via uncontrolled recursion in XML catalog processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0990
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-15 15:15 修改: 2026-04-22 10:16
|
| login |
CVE-2026-27456 |
中危 |
1:4.16.0-2+really2.41-5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| login |
CVE-2026-3184 |
中危 |
1:4.16.0-2+really2.41-5 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| mount |
CVE-2026-27456 |
中危 |
2.41-5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| mount |
CVE-2026-3184 |
中危 |
2.41-5 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| gpg |
CVE-2025-68972 |
中危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: GnuPG: Signature bypass via form feed character in signed messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
|
| curl |
CVE-2026-3805 |
中危 |
8.14.1-2+deb13u3 |
|
curl: curl: Arbitrary code execution or Denial of Service via use-after-free in SMB request handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3805
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:08
|
| gpg-agent |
CVE-2025-68972 |
中危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: GnuPG: Signature bypass via form feed character in signed messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
|
| curl |
CVE-2026-4873 |
中危 |
8.14.1-2+deb13u3 |
|
curl: curl: Information disclosure due to incorrect TLS connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
|
| gpg-wks-client |
CVE-2025-68972 |
中危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: GnuPG: Signature bypass via form feed character in signed messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
|
| curl |
CVE-2026-5545 |
中危 |
8.14.1-2+deb13u3 |
|
curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
|
| gpgconf |
CVE-2025-68972 |
中危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: GnuPG: Signature bypass via form feed character in signed messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
|
| curl |
CVE-2026-6253 |
中危 |
8.14.1-2+deb13u3 |
|
curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
|
| perl-base |
CVE-2025-15649 |
中危 |
5.40.1-6 |
|
IO::Uncompress::Unzip versions before 2.215 for Perl propagate uncaugh ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
|
| perl-base |
CVE-2026-7010 |
中危 |
5.40.1-6 |
|
HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-05-11 22:22 修改: 2026-05-12 16:48
|
| gpgsm |
CVE-2025-68972 |
中危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: GnuPG: Signature bypass via form feed character in signed messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
|
| python3.13 |
CVE-2025-12781 |
中危 |
3.13.5-2+deb13u2 |
|
cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-21 20:16 修改: 2026-02-02 17:25
|
| python3.13 |
CVE-2025-15366 |
中危 |
3.13.5-2+deb13u2 |
|
cpython: IMAP command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| python3.13 |
CVE-2025-15367 |
中危 |
3.13.5-2+deb13u2 |
|
cpython: POP3 command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| python3.13 |
CVE-2026-1502 |
中危 |
3.13.5-2+deb13u2 |
|
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-04-10 18:16 修改: 2026-06-04 15:16
|
| python3.13 |
CVE-2026-3276 |
中危 |
3.13.5-2+deb13u2 |
|
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-06-03 16:16 修改: 2026-06-04 18:16
|
| python3.13 |
CVE-2026-7774 |
中危 |
3.13.5-2+deb13u2 |
|
tarfile.data_filter could be bypassed using crafted link entries, incl ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-06-04 16:16 修改: 2026-06-04 20:16
|
| python3.13 |
CVE-2026-8328 |
中危 |
3.13.5-2+deb13u2 |
|
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 21:16 修改: 2026-05-14 16:21
|
| curl |
CVE-2026-6429 |
中危 |
8.14.1-2+deb13u3 |
|
curl: libcurl: Credential leak via reused proxy connection during HTTP redirects
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
|
| python3.13-minimal |
CVE-2025-12781 |
中危 |
3.13.5-2+deb13u2 |
|
cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-21 20:16 修改: 2026-02-02 17:25
|
| python3.13-minimal |
CVE-2025-15366 |
中危 |
3.13.5-2+deb13u2 |
|
cpython: IMAP command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| python3.13-minimal |
CVE-2025-15367 |
中危 |
3.13.5-2+deb13u2 |
|
cpython: POP3 command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| python3.13-minimal |
CVE-2026-1502 |
中危 |
3.13.5-2+deb13u2 |
|
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-04-10 18:16 修改: 2026-06-04 15:16
|
| python3.13-minimal |
CVE-2026-3276 |
中危 |
3.13.5-2+deb13u2 |
|
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-06-03 16:16 修改: 2026-06-04 18:16
|
| python3.13-minimal |
CVE-2026-7774 |
中危 |
3.13.5-2+deb13u2 |
|
tarfile.data_filter could be bypassed using crafted link entries, incl ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-06-04 16:16 修改: 2026-06-04 20:16
|
| python3.13-minimal |
CVE-2026-8328 |
中危 |
3.13.5-2+deb13u2 |
|
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-05-13 21:16 修改: 2026-05-14 16:21
|
| tar |
CVE-2026-5704 |
中危 |
1.35+dfsg-3.1 |
|
tar: tar: Hidden file injection via crafted archives
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-06 16:16 修改: 2026-04-22 20:08
|
| util-linux |
CVE-2026-27456 |
中危 |
2.41-5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| util-linux |
CVE-2026-3184 |
中危 |
2.41-5 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| zlib1g |
CVE-2026-27171 |
中危 |
1:1.3.dfsg+really1.3.1-1+b1 |
|
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-02-18 04:16 修改: 2026-03-25 21:27
|
| libkrb5-3 |
CVE-2024-26461 |
低危 |
1.21.3-5+deb13u1 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
|
| libkrb5support0 |
CVE-2018-5709 |
低危 |
1.21.3-5+deb13u1 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
|
| libkrb5support0 |
CVE-2024-26458 |
低危 |
1.21.3-5+deb13u1 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
|
| libkrb5support0 |
CVE-2024-26461 |
低危 |
1.21.3-5+deb13u1 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
|
| libblkid1 |
CVE-2022-0563 |
低危 |
2.41-5 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| libblkid1 |
CVE-2025-14104 |
低危 |
2.41-5 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| liblastlog2-2 |
CVE-2022-0563 |
低危 |
2.41-5 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| liblastlog2-2 |
CVE-2025-14104 |
低危 |
2.41-5 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| libldap-common |
CVE-2015-3276 |
低危 |
2.6.10+dfsg-1 |
|
openldap: incorrect multi-keyword mode cipherstring parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2015-12-07 20:59 修改: 2026-05-06 22:30
|
| libldap-common |
CVE-2017-14159 |
低危 |
2.6.10+dfsg-1 |
|
openldap: Privilege escalation via PID file manipulation
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2017-09-05 18:29 修改: 2026-05-13 00:24
|
| libldap-common |
CVE-2017-17740 |
低危 |
2.6.10+dfsg-1 |
|
openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2017-12-18 06:29 修改: 2025-04-20 01:37
|
| libldap-common |
CVE-2020-15719 |
低危 |
2.6.10+dfsg-1 |
|
openldap: Certificate validation incorrectly matches name against CN-ID
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2020-07-14 14:15 修改: 2024-11-21 05:06
|
| libldap-common |
CVE-2026-22185 |
低危 |
2.6.10+dfsg-1 |
|
OpenLDAP: OpenLDAP LMDB: Denial of Service and Information Disclosure via Heap Buffer Underflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22185
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-07 21:16 修改: 2026-04-15 00:35
|
| libldap2 |
CVE-2015-3276 |
低危 |
2.6.10+dfsg-1 |
|
openldap: incorrect multi-keyword mode cipherstring parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2015-12-07 20:59 修改: 2026-05-06 22:30
|
| libldap2 |
CVE-2017-14159 |
低危 |
2.6.10+dfsg-1 |
|
openldap: Privilege escalation via PID file manipulation
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2017-09-05 18:29 修改: 2026-05-13 00:24
|
| libldap2 |
CVE-2017-17740 |
低危 |
2.6.10+dfsg-1 |
|
openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2017-12-18 06:29 修改: 2025-04-20 01:37
|
| libldap2 |
CVE-2020-15719 |
低危 |
2.6.10+dfsg-1 |
|
openldap: Certificate validation incorrectly matches name against CN-ID
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2020-07-14 14:15 修改: 2024-11-21 05:06
|
| libldap2 |
CVE-2026-22185 |
低危 |
2.6.10+dfsg-1 |
|
OpenLDAP: OpenLDAP LMDB: Denial of Service and Information Disclosure via Heap Buffer Underflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22185
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-07 21:16 修改: 2026-04-15 00:35
|
| gnupg-l10n |
CVE-2022-3219 |
低危 |
2.4.7-21+deb13u1 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
|
| bash-completion |
CVE-2018-7738 |
低危 |
1:2.16.0-7 |
|
util-linux: Shell command injection in unescaped bash-completed mount point names
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7738
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2018-03-07 02:29 修改: 2024-12-13 14:15
|
| apt |
CVE-2011-3374 |
低危 |
3.0.3 |
|
It was found that apt-key in apt, all versions, do not correctly valid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
|
| libmount1 |
CVE-2022-0563 |
低危 |
2.41-5 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| libmount1 |
CVE-2025-14104 |
低危 |
2.41-5 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| gnupg-utils |
CVE-2022-3219 |
低危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
|
| libncursesw6 |
CVE-2025-6141 |
低危 |
6.5+20250216-2 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:bffa3c30a00bb534b2e3637bd26d9a75e095172be7d0b33924f1a61bf6cb2120
发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
|
| curl |
CVE-2025-10966 |
低危 |
8.14.1-2+deb13u3 |
|
curl: Curl missing SFTP host verification with wolfSSH backend
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2025-11-07 08:15 修改: 2026-06-02 14:16
|
| libc-bin |
CVE-2010-4756 |
低危 |
2.41-12+deb13u3 |
|
glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions
漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
|
| libc-bin |
CVE-2018-20796 |
低危 |
2.41-12+deb13u3 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
|
| libc-bin |
CVE-2019-1010022 |
低危 |
2.41-12+deb13u3 |
|
glibc: stack guard protection bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc-bin |
CVE-2019-1010023 |
低危 |
2.41-12+deb13u3 |
|
glibc: running ldd on malicious ELF leads to code execution because of wrong size computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc-bin |
CVE-2019-1010024 |
低危 |
2.41-12+deb13u3 |
|
glibc: ASLR bypass using cache of thread stack and heap
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc-bin |
CVE-2019-1010025 |
低危 |
2.41-12+deb13u3 |
|
glibc: information disclosure of heap addresses of pthread_created thread
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc-bin |
CVE-2019-9192 |
低危 |
2.41-12+deb13u3 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
|
| libpython3.13-minimal |
CVE-2026-3479 |
低危 |
3.13.5-2+deb13u2 |
|
python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-03-18 19:16 修改: 2026-04-07 18:16
|
| curl |
CVE-2025-14017 |
低危 |
8.14.1-2+deb13u3 |
|
curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
|
| gpg |
CVE-2022-3219 |
低危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
|
| curl |
CVE-2025-14524 |
低危 |
8.14.1-2+deb13u3 |
|
curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
|
| curl |
CVE-2025-14819 |
低危 |
8.14.1-2+deb13u3 |
|
curl: libcurl: Improper certificate validation due to cached TLS settings reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:51
|
| libc6 |
CVE-2010-4756 |
低危 |
2.41-12+deb13u3 |
|
glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions
漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
|
| libc6 |
CVE-2018-20796 |
低危 |
2.41-12+deb13u3 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
|
| libc6 |
CVE-2019-1010022 |
低危 |
2.41-12+deb13u3 |
|
glibc: stack guard protection bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc6 |
CVE-2019-1010023 |
低危 |
2.41-12+deb13u3 |
|
glibc: running ldd on malicious ELF leads to code execution because of wrong size computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libpython3.13-stdlib |
CVE-2026-3479 |
低危 |
3.13.5-2+deb13u2 |
|
python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-03-18 19:16 修改: 2026-04-07 18:16
|
| libc6 |
CVE-2019-1010024 |
低危 |
2.41-12+deb13u3 |
|
glibc: ASLR bypass using cache of thread stack and heap
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc6 |
CVE-2019-1010025 |
低危 |
2.41-12+deb13u3 |
|
glibc: information disclosure of heap addresses of pthread_created thread
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libsmartcols1 |
CVE-2022-0563 |
低危 |
2.41-5 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| libsmartcols1 |
CVE-2025-14104 |
低危 |
2.41-5 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| libsqlite3-0 |
CVE-2021-45346 |
低危 |
3.46.1-7+deb13u1 |
|
sqlite: crafted SQL query allows a malicious user to obtain sensitive information
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45346
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2022-02-14 19:15 修改: 2024-11-21 06:32
|
| libsqlite3-0 |
CVE-2025-70873 |
低危 |
3.46.1-7+deb13u1 |
|
sqlite: SQLite: Information Disclosure via Crafted ZIP File
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-70873
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-03-12 19:16 修改: 2026-04-16 21:15
|
| libc6 |
CVE-2019-9192 |
低危 |
2.41-12+deb13u3 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
|
| libsystemd0 |
CVE-2013-4392 |
低危 |
257.13-1~deb13u1 |
|
systemd: TOCTOU race condition when updating file permissions and SELinux security contexts
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
|
| libsystemd0 |
CVE-2023-31437 |
低危 |
257.13-1~deb13u1 |
|
An issue was discovered in systemd 253. An attacker can modify a seale ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
|
| libsystemd0 |
CVE-2023-31438 |
低危 |
257.13-1~deb13u1 |
|
An issue was discovered in systemd 253. An attacker can truncate a sea ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
|
| libsystemd0 |
CVE-2023-31439 |
低危 |
257.13-1~deb13u1 |
|
An issue was discovered in systemd 253. An attacker can modify the con ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
|
| libsystemd0 |
CVE-2026-40228 |
低危 |
257.13-1~deb13u1 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
|
| libtasn1-6 |
CVE-2025-13151 |
低危 |
4.20.0-2 |
|
libtasn1: libtasn1: Denial of Service via stack-based buffer overflow in asn1_expend_octet_string
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13151
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-07 22:15 修改: 2026-02-02 19:27
|
| gpg-agent |
CVE-2022-3219 |
低危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
|
| libtinfo6 |
CVE-2025-6141 |
低危 |
6.5+20250216-2 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
|
| libudev1 |
CVE-2013-4392 |
低危 |
257.13-1~deb13u1 |
|
systemd: TOCTOU race condition when updating file permissions and SELinux security contexts
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
|
| libudev1 |
CVE-2023-31437 |
低危 |
257.13-1~deb13u1 |
|
An issue was discovered in systemd 253. An attacker can modify a seale ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
|
| libudev1 |
CVE-2023-31438 |
低危 |
257.13-1~deb13u1 |
|
An issue was discovered in systemd 253. An attacker can truncate a sea ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
|
| libudev1 |
CVE-2023-31439 |
低危 |
257.13-1~deb13u1 |
|
An issue was discovered in systemd 253. An attacker can modify the con ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
|
| libudev1 |
CVE-2026-40228 |
低危 |
257.13-1~deb13u1 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
|
| curl |
CVE-2025-15079 |
低危 |
8.14.1-2+deb13u3 |
|
curl: Host verification bypass during SSH transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:50
|
| curl |
CVE-2025-15224 |
低危 |
8.14.1-2+deb13u3 |
|
curl: libssh key passphrase bypass without agent set
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:47
|
| libuuid1 |
CVE-2022-0563 |
低危 |
2.41-5 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| libuuid1 |
CVE-2025-14104 |
低危 |
2.41-5 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| gpg-wks-client |
CVE-2022-3219 |
低危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
|
| libxml2 |
CVE-2025-8732 |
低危 |
2.12.7+dfsg+really2.9.14-2.1+deb13u2 |
|
libxml2: libxml2: Uncontrolled Recursion Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8732
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2025-08-08 17:15 修改: 2026-06-02 14:16
|
| libxml2 |
CVE-2026-0989 |
低危 |
2.12.7+dfsg+really2.9.14-2.1+deb13u2 |
|
libxml2: Unbounded RelaxNG Include Recursion Leading to Stack Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0989
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-15 15:15 修改: 2026-04-22 10:16
|
| libxml2 |
CVE-2026-0992 |
低危 |
2.12.7+dfsg+really2.9.14-2.1+deb13u2 |
|
libxml2: libxml2: Denial of Service via crafted XML catalogs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0992
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-15 15:15 修改: 2026-04-22 10:16
|
| libxml2 |
CVE-2026-1757 |
低危 |
2.12.7+dfsg+really2.9.14-2.1+deb13u2 |
|
libxml2: Memory Leak Leading to Local Denial of Service in xmllint Interactive Shell
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1757
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-02-02 13:15 修改: 2026-04-22 10:16
|
| apt-transport-https |
CVE-2011-3374 |
低危 |
3.0.3 |
|
It was found that apt-key in apt, all versions, do not correctly valid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
|
| bsdutils |
CVE-2022-0563 |
低危 |
1:2.41-5 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| login |
CVE-2022-0563 |
低危 |
1:4.16.0-2+really2.41-5 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| login |
CVE-2025-14104 |
低危 |
1:4.16.0-2+really2.41-5 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| login.defs |
CVE-2007-5686 |
低危 |
1:4.17.4-2 |
|
initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
|
| login.defs |
CVE-2024-56433 |
低危 |
1:4.17.4-2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
|
| login.defs |
TEMP-0628843-DBAD28 |
低危 |
1:4.17.4-2 |
|
[more related to CVE-2005-4890]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| gpgconf |
CVE-2022-3219 |
低危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
|
| dirmngr |
CVE-2022-3219 |
低危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
|
| mount |
CVE-2022-0563 |
低危 |
2.41-5 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| mount |
CVE-2025-14104 |
低危 |
2.41-5 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| bsdutils |
CVE-2025-14104 |
低危 |
1:2.41-5 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| ncurses-base |
CVE-2025-6141 |
低危 |
6.5+20250216-2 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
|
| gpgsm |
CVE-2022-3219 |
低危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
|
| ncurses-bin |
CVE-2025-6141 |
低危 |
6.5+20250216-2 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
|
| passwd |
CVE-2007-5686 |
低危 |
1:4.17.4-2 |
|
initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
|
| passwd |
CVE-2024-56433 |
低危 |
1:4.17.4-2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
|
| passwd |
TEMP-0628843-DBAD28 |
低危 |
1:4.17.4-2 |
|
[more related to CVE-2005-4890]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| coreutils |
CVE-2017-18018 |
低危 |
9.7-3 |
|
coreutils: race condition vulnerability in chown and chgrp
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2018-01-04 04:29 修改: 2025-06-09 16:15
|
| libcurl4t64 |
CVE-2025-10966 |
低危 |
8.14.1-2+deb13u3 |
|
curl: Curl missing SFTP host verification with wolfSSH backend
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2025-11-07 08:15 修改: 2026-06-02 14:16
|
| libcurl4t64 |
CVE-2025-14017 |
低危 |
8.14.1-2+deb13u3 |
|
curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
|
| libcurl4t64 |
CVE-2025-14524 |
低危 |
8.14.1-2+deb13u3 |
|
curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
|
| libcurl4t64 |
CVE-2025-14819 |
低危 |
8.14.1-2+deb13u3 |
|
curl: libcurl: Improper certificate validation due to cached TLS settings reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:51
|
| libcurl4t64 |
CVE-2025-15079 |
低危 |
8.14.1-2+deb13u3 |
|
curl: Host verification bypass during SSH transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:50
|
| libcurl4t64 |
CVE-2025-15224 |
低危 |
8.14.1-2+deb13u3 |
|
curl: libssh key passphrase bypass without agent set
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:47
|
| gnupg |
CVE-2022-3219 |
低危 |
2.4.7-21+deb13u1 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
|
| perl-base |
CVE-2011-4116 |
低危 |
5.40.1-6 |
|
perl: File:: Temp insecure temporary file handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
|
| gpgv |
CVE-2022-3219 |
低危 |
2.4.7-21+deb13u1+b3 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
|
| krb5-locales |
CVE-2018-5709 |
低危 |
1.21.3-5+deb13u1 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
|
| krb5-locales |
CVE-2024-26458 |
低危 |
1.21.3-5+deb13u1 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
|
| krb5-locales |
CVE-2024-26461 |
低危 |
1.21.3-5+deb13u1 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
|
| libapt-pkg7.0 |
CVE-2011-3374 |
低危 |
3.0.3 |
|
It was found that apt-key in apt, all versions, do not correctly valid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
|
| coreutils |
CVE-2025-5278 |
低危 |
9.7-3 |
|
coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5278
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2025-05-27 21:15 修改: 2026-05-19 17:16
|
| bash |
TEMP-0841856-B18BAF |
低危 |
5.2.37-2+b9 |
|
[Privilege escalation possible to other user than root]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libexpat1 |
CVE-2026-24515 |
低危 |
2.7.1-2 |
|
libexpat: libexpat null pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24515
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-01-23 08:16 修改: 2026-06-02 14:16
|
| python3.13 |
CVE-2026-3479 |
低危 |
3.13.5-2+deb13u2 |
|
python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-03-18 19:16 修改: 2026-04-07 18:16
|
| libexpat1 |
CVE-2026-41080 |
低危 |
2.7.1-2 |
|
libexpat: expat: libexpat: Denial of Service via hash flooding with crafted XML
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41080
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-04-16 17:16 修改: 2026-04-27 07:16
|
| libgcrypt20 |
CVE-2018-6829 |
低危 |
1.11.0-7+deb13u1 |
|
libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2018-02-07 23:29 修改: 2024-11-21 04:11
|
| libgcrypt20 |
CVE-2024-2236 |
低危 |
1.11.0-7+deb13u1 |
|
libgcrypt: vulnerable to Marvin Attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2024-03-06 22:15 修改: 2026-04-15 00:35
|
| libgnutls30t64 |
CVE-2011-3389 |
低危 |
3.8.9-3+deb13u4 |
|
HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2011-09-06 19:55 修改: 2026-04-29 01:13
|
| libgssapi-krb5-2 |
CVE-2018-5709 |
低危 |
1.21.3-5+deb13u1 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
|
| libgssapi-krb5-2 |
CVE-2024-26458 |
低危 |
1.21.3-5+deb13u1 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
|
| libgssapi-krb5-2 |
CVE-2024-26461 |
低危 |
1.21.3-5+deb13u1 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
|
| libk5crypto3 |
CVE-2018-5709 |
低危 |
1.21.3-5+deb13u1 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
|
| python3.13-minimal |
CVE-2026-3479 |
低危 |
3.13.5-2+deb13u2 |
|
python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-03-18 19:16 修改: 2026-04-07 18:16
|
| sysvinit-utils |
TEMP-0517018-A83CE6 |
低危 |
3.14-4 |
|
[sysvinit: no-root option in expert installer exposes locally exploitable security flaw]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libk5crypto3 |
CVE-2024-26458 |
低危 |
1.21.3-5+deb13u1 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
|
| tar |
CVE-2005-2541 |
低危 |
1.35+dfsg-3.1 |
|
tar: does not properly warn the user when extracting setuid or setgid files
漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2005-08-10 04:00 修改: 2026-04-16 00:27
|
| tar |
TEMP-0290435-0B57B5 |
低危 |
1.35+dfsg-3.1 |
|
[tar's rmt command may have undesired side effects]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libk5crypto3 |
CVE-2024-26461 |
低危 |
1.21.3-5+deb13u1 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
|
| libkrb5-3 |
CVE-2018-5709 |
低危 |
1.21.3-5+deb13u1 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
|
| util-linux |
CVE-2022-0563 |
低危 |
2.41-5 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| util-linux |
CVE-2025-14104 |
低危 |
2.41-5 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| libkrb5-3 |
CVE-2024-26458 |
低危 |
1.21.3-5+deb13u1 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
|
| openssl-provider-legacy |
CVE-2026-42768 |
未知 |
3.5.6-1~deb13u1 |
|
[Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42768
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl-provider-legacy |
CVE-2026-42769 |
未知 |
3.5.6-1~deb13u1 |
|
[Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42769
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl-provider-legacy |
CVE-2026-42770 |
未知 |
3.5.6-1~deb13u1 |
|
[FFC-DH Peer Validation Uses Attacker-Supplied q]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl-provider-legacy |
CVE-2026-45445 |
未知 |
3.5.6-1~deb13u1 |
|
[AES-OCB IV Ignored on EVP_Cipher() Path]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl-provider-legacy |
CVE-2026-45446 |
未知 |
3.5.6-1~deb13u1 |
|
[Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl-provider-legacy |
CVE-2026-45447 |
未知 |
3.5.6-1~deb13u1 |
|
[Heap Use-After-Free in the PKCS7_verify() Function]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl-provider-legacy |
CVE-2026-7383 |
未知 |
3.5.6-1~deb13u1 |
|
[Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl-provider-legacy |
CVE-2026-9076 |
未知 |
3.5.6-1~deb13u1 |
|
[Out-of-Bounds Read in CMS Password-Based Decryption]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| libssl3t64 |
CVE-2026-34181 |
未知 |
3.5.6-1~deb13u1 |
|
[PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34181
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| libssl3t64 |
CVE-2026-34182 |
未知 |
3.5.6-1~deb13u1 |
|
[CMS AuthEnvelopedData Processing May Accept Forged Messages]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| libssl3t64 |
CVE-2026-34183 |
未知 |
3.5.6-1~deb13u1 |
|
[Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34183
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| libssl3t64 |
CVE-2026-42764 |
未知 |
3.5.6-1~deb13u1 |
|
[NULL Pointer Dereference in QUIC Server Initial Packet Handling]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42764
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| libssl3t64 |
CVE-2026-42766 |
未知 |
3.5.6-1~deb13u1 |
|
[Possible NULL Dereference in Password-Based CMS Decryption]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| libssl3t64 |
CVE-2026-42767 |
未知 |
3.5.6-1~deb13u1 |
|
[NULL Pointer Dereference in CRMF EncryptedValue Decryption]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| libssl3t64 |
CVE-2026-42768 |
未知 |
3.5.6-1~deb13u1 |
|
[Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42768
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| libssl3t64 |
CVE-2026-42769 |
未知 |
3.5.6-1~deb13u1 |
|
[Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42769
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| libssl3t64 |
CVE-2026-42770 |
未知 |
3.5.6-1~deb13u1 |
|
[FFC-DH Peer Validation Uses Attacker-Supplied q]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| libssl3t64 |
CVE-2026-45445 |
未知 |
3.5.6-1~deb13u1 |
|
[AES-OCB IV Ignored on EVP_Cipher() Path]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| libssl3t64 |
CVE-2026-45446 |
未知 |
3.5.6-1~deb13u1 |
|
[Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| libssl3t64 |
CVE-2026-45447 |
未知 |
3.5.6-1~deb13u1 |
|
[Heap Use-After-Free in the PKCS7_verify() Function]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| perl-base |
CVE-2026-48961 |
未知 |
5.40.1-6 |
|
IO::Compress versions from 2.207 before 2.220 for Perl ship a zipdetai ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
|
| libssl3t64 |
CVE-2026-7383 |
未知 |
3.5.6-1~deb13u1 |
|
[Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| libssl3t64 |
CVE-2026-9076 |
未知 |
3.5.6-1~deb13u1 |
|
[Out-of-Bounds Read in CMS Password-Based Decryption]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| libpython3.13-stdlib |
CVE-2026-9669 |
未知 |
3.13.5-2+deb13u2 |
|
bz2.BZ2Decompressor objects could be reused after a decompression erro ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-06-08 23:17 修改: 2026-06-09 13:49
|
| libpython3.13-minimal |
CVE-2026-9669 |
未知 |
3.13.5-2+deb13u2 |
|
bz2.BZ2Decompressor objects could be reused after a decompression erro ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-06-08 23:17 修改: 2026-06-09 13:49
|
| libssl3t64 |
CVE-2026-34180 |
未知 |
3.5.6-1~deb13u1 |
|
[Heap Buffer Over-read in ASN.1 Content Parsing]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl |
CVE-2026-34180 |
未知 |
3.5.6-1~deb13u1 |
|
[Heap Buffer Over-read in ASN.1 Content Parsing]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:98df1ca0e575d9026c1abd12994fad3c14effa4558d50b6961fd586930956b26
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl |
CVE-2026-34181 |
未知 |
3.5.6-1~deb13u1 |
|
[PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34181
镜像层: sha256:98df1ca0e575d9026c1abd12994fad3c14effa4558d50b6961fd586930956b26
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl |
CVE-2026-34182 |
未知 |
3.5.6-1~deb13u1 |
|
[CMS AuthEnvelopedData Processing May Accept Forged Messages]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:98df1ca0e575d9026c1abd12994fad3c14effa4558d50b6961fd586930956b26
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl |
CVE-2026-34183 |
未知 |
3.5.6-1~deb13u1 |
|
[Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34183
镜像层: sha256:98df1ca0e575d9026c1abd12994fad3c14effa4558d50b6961fd586930956b26
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| python3.13 |
CVE-2026-9669 |
未知 |
3.13.5-2+deb13u2 |
|
bz2.BZ2Decompressor objects could be reused after a decompression erro ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-06-08 23:17 修改: 2026-06-09 13:49
|
| openssl |
CVE-2026-42764 |
未知 |
3.5.6-1~deb13u1 |
|
[NULL Pointer Dereference in QUIC Server Initial Packet Handling]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42764
镜像层: sha256:98df1ca0e575d9026c1abd12994fad3c14effa4558d50b6961fd586930956b26
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl |
CVE-2026-42766 |
未知 |
3.5.6-1~deb13u1 |
|
[Possible NULL Dereference in Password-Based CMS Decryption]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:98df1ca0e575d9026c1abd12994fad3c14effa4558d50b6961fd586930956b26
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl |
CVE-2026-42767 |
未知 |
3.5.6-1~deb13u1 |
|
[NULL Pointer Dereference in CRMF EncryptedValue Decryption]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:98df1ca0e575d9026c1abd12994fad3c14effa4558d50b6961fd586930956b26
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl |
CVE-2026-42768 |
未知 |
3.5.6-1~deb13u1 |
|
[Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42768
镜像层: sha256:98df1ca0e575d9026c1abd12994fad3c14effa4558d50b6961fd586930956b26
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl |
CVE-2026-42769 |
未知 |
3.5.6-1~deb13u1 |
|
[Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42769
镜像层: sha256:98df1ca0e575d9026c1abd12994fad3c14effa4558d50b6961fd586930956b26
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl |
CVE-2026-42770 |
未知 |
3.5.6-1~deb13u1 |
|
[FFC-DH Peer Validation Uses Attacker-Supplied q]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:98df1ca0e575d9026c1abd12994fad3c14effa4558d50b6961fd586930956b26
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl |
CVE-2026-45445 |
未知 |
3.5.6-1~deb13u1 |
|
[AES-OCB IV Ignored on EVP_Cipher() Path]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:98df1ca0e575d9026c1abd12994fad3c14effa4558d50b6961fd586930956b26
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl |
CVE-2026-45446 |
未知 |
3.5.6-1~deb13u1 |
|
[Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:98df1ca0e575d9026c1abd12994fad3c14effa4558d50b6961fd586930956b26
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl |
CVE-2026-45447 |
未知 |
3.5.6-1~deb13u1 |
|
[Heap Use-After-Free in the PKCS7_verify() Function]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:98df1ca0e575d9026c1abd12994fad3c14effa4558d50b6961fd586930956b26
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| python3.13-minimal |
CVE-2026-9669 |
未知 |
3.13.5-2+deb13u2 |
|
bz2.BZ2Decompressor objects could be reused after a decompression erro ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:7032272e6b44628c02915df90864a521aa5f321faee41569484215eeb4e8e43c
发布日期: 2026-06-08 23:17 修改: 2026-06-09 13:49
|
| openssl |
CVE-2026-7383 |
未知 |
3.5.6-1~deb13u1 |
|
[Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:98df1ca0e575d9026c1abd12994fad3c14effa4558d50b6961fd586930956b26
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl |
CVE-2026-9076 |
未知 |
3.5.6-1~deb13u1 |
|
[Out-of-Bounds Read in CMS Password-Based Decryption]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:98df1ca0e575d9026c1abd12994fad3c14effa4558d50b6961fd586930956b26
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl-provider-legacy |
CVE-2026-34180 |
未知 |
3.5.6-1~deb13u1 |
|
[Heap Buffer Over-read in ASN.1 Content Parsing]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl-provider-legacy |
CVE-2026-34181 |
未知 |
3.5.6-1~deb13u1 |
|
[PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34181
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl-provider-legacy |
CVE-2026-34182 |
未知 |
3.5.6-1~deb13u1 |
|
[CMS AuthEnvelopedData Processing May Accept Forged Messages]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl-provider-legacy |
CVE-2026-34183 |
未知 |
3.5.6-1~deb13u1 |
|
[Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34183
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl-provider-legacy |
CVE-2026-42764 |
未知 |
3.5.6-1~deb13u1 |
|
[NULL Pointer Dereference in QUIC Server Initial Packet Handling]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42764
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl-provider-legacy |
CVE-2026-42766 |
未知 |
3.5.6-1~deb13u1 |
|
[Possible NULL Dereference in Password-Based CMS Decryption]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|
| openssl-provider-legacy |
CVE-2026-42767 |
未知 |
3.5.6-1~deb13u1 |
|
[NULL Pointer Dereference in CRMF EncryptedValue Decryption]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:219a998c60509502b47b97f1158067d5dd62640d2d689560d32cfd5594f6bc40
发布日期: 2026-06-09 17:17 修改: 2026-06-09 17:17
|