| libcrypto3 |
CVE-2026-31789 |
严重 |
3.5.5-r0 |
3.5.6-r0 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-31789 |
严重 |
3.5.5-r0 |
3.5.6-r0 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-28388 |
高危 |
3.5.5-r0 |
3.5.6-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-28389 |
高危 |
3.5.5-r0 |
3.5.6-r0 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-28390 |
高危 |
3.5.5-r0 |
3.5.6-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-28387 |
高危 |
3.5.5-r0 |
3.5.6-r0 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28387 |
高危 |
3.5.5-r0 |
3.5.6-r0 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28388 |
高危 |
3.5.5-r0 |
3.5.6-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28389 |
高危 |
3.5.5-r0 |
3.5.6-r0 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28390 |
高危 |
3.5.5-r0 |
3.5.6-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libxml2 |
CVE-2026-6732 |
高危 |
2.13.9-r0 |
2.13.9-r1 |
libxml2: libxml2: Denial of Service via crafted XSD-validated document
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6732
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-04-23 23:16 修改: 2026-05-15 14:36
|
| musl |
CVE-2026-40200 |
高危 |
1.2.5-r21 |
1.2.5-r23 |
musl: musl libc: Arbitrary code execution and denial of service via stack-based memory corruption in qsort
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40200
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-10 17:17 修改: 2026-04-27 19:18
|
| musl-utils |
CVE-2026-40200 |
高危 |
1.2.5-r21 |
1.2.5-r23 |
musl: musl libc: Arbitrary code execution and denial of service via stack-based memory corruption in qsort
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40200
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-10 17:17 修改: 2026-04-27 19:18
|
| nghttp2-libs |
CVE-2026-27135 |
高危 |
1.68.0-r0 |
1.68.1 |
nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27135
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-03-18 18:16 修改: 2026-05-13 22:16
|
| zlib |
CVE-2026-22184 |
高危 |
1.3.1-r2 |
1.3.2-r0 |
zlib: zlib: Arbitrary code execution via buffer overflow in untgz utility
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22184
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-01-07 21:16 修改: 2026-03-18 16:26
|
| libcurl |
CVE-2026-3784 |
中危 |
8.17.0-r1 |
8.19.0-r0 |
curl: curl: Unauthorized access due to improper HTTP proxy connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
|
| libcurl |
CVE-2026-3805 |
中危 |
8.17.0-r1 |
8.19.0-r0 |
curl: curl: Arbitrary code execution or Denial of Service via use-after-free in SMB request handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3805
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:08
|
| libpng |
CVE-2026-33416 |
中危 |
1.6.55-r0 |
1.6.56-r0 |
libpng: libpng: Arbitrary code execution due to use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33416
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-03-26 17:16 修改: 2026-04-02 20:28
|
| libpng |
CVE-2026-33636 |
中危 |
1.6.55-r0 |
1.6.56-r0 |
libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33636
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-03-26 17:16 修改: 2026-04-02 18:42
|
| libpng |
CVE-2026-34757 |
中危 |
1.6.55-r0 |
1.6.57-r0 |
libpng: libpng: Information disclosure and data corruption via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34757
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-04-09 15:16 修改: 2026-05-13 23:07
|
| libpng |
CVE-2026-40930 |
中危 |
1.6.55-r0 |
1.6.58-r1 |
LIBPNG is a reference library for use in applications that process PNG ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40930
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-06-04 16:16 修改: 2026-06-04 16:23
|
| curl |
CVE-2025-14017 |
中危 |
8.17.0-r1 |
8.19.0-r0 |
curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
|
| curl |
CVE-2026-1965 |
中危 |
8.17.0-r1 |
8.19.0-r0 |
curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
|
| curl |
CVE-2026-3783 |
中危 |
8.17.0-r1 |
8.19.0-r0 |
curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
|
| curl |
CVE-2026-3784 |
中危 |
8.17.0-r1 |
8.19.0-r0 |
curl: curl: Unauthorized access due to improper HTTP proxy connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
|
| curl |
CVE-2026-3805 |
中危 |
8.17.0-r1 |
8.19.0-r0 |
curl: curl: Arbitrary code execution or Denial of Service via use-after-free in SMB request handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3805
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:08
|
| libssl3 |
CVE-2026-2673 |
中危 |
3.5.5-r0 |
3.5.6-r0 |
openssl: OpenSSL TLS 1.3 server may choose unexpected key agreement group
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2673
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-03-13 19:54 修改: 2026-06-05 19:48
|
| libssl3 |
CVE-2026-31790 |
中危 |
3.5.5-r0 |
3.5.6-r0 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libuuid |
CVE-2026-27456 |
中危 |
2.41.2-r0 |
2.41.4-r0 |
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libcrypto3 |
CVE-2026-2673 |
中危 |
3.5.5-r0 |
3.5.6-r0 |
openssl: OpenSSL TLS 1.3 server may choose unexpected key agreement group
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2673
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-03-13 19:54 修改: 2026-06-05 19:48
|
| libxpm |
CVE-2026-4367 |
中危 |
3.5.17-r0 |
3.5.19-r0 |
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4367
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libcrypto3 |
CVE-2026-31790 |
中危 |
3.5.5-r0 |
3.5.6-r0 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| musl |
CVE-2026-6042 |
中危 |
1.2.5-r21 |
1.2.5-r22 |
musl libc: GB18030 4-byte Decoder: musl libc: Denial of Service via inefficient algorithmic complexity in iconv
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6042
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-10 09:16 修改: 2026-04-24 18:01
|
| libcurl |
CVE-2025-14017 |
中危 |
8.17.0-r1 |
8.19.0-r0 |
curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
|
| musl-utils |
CVE-2026-6042 |
中危 |
1.2.5-r21 |
1.2.5-r22 |
musl libc: GB18030 4-byte Decoder: musl libc: Denial of Service via inefficient algorithmic complexity in iconv
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6042
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-04-10 09:16 修改: 2026-04-24 18:01
|
| libcurl |
CVE-2026-1965 |
中危 |
8.17.0-r1 |
8.19.0-r0 |
curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
|
| xz-libs |
CVE-2026-34743 |
中危 |
5.8.2-r0 |
5.8.3-r0 |
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-04-02 19:21 修改: 2026-04-15 17:33
|
| libcurl |
CVE-2026-3783 |
中危 |
8.17.0-r1 |
8.19.0-r0 |
curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
|
| zlib |
CVE-2026-27171 |
中危 |
1.3.1-r2 |
1.3.2-r0 |
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:989e799e634906e94dc9a5ee2ee26fc92ad260522990f26e707861a5f52bf64e
发布日期: 2026-02-18 04:16 修改: 2026-03-25 21:27
|
| libcurl |
CVE-2025-14524 |
低危 |
8.17.0-r1 |
8.19.0-r0 |
curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
|
| libcurl |
CVE-2025-14819 |
低危 |
8.17.0-r1 |
8.19.0-r0 |
curl: libcurl: Improper certificate validation due to cached TLS settings reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:51
|
| curl |
CVE-2025-14524 |
低危 |
8.17.0-r1 |
8.19.0-r0 |
curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
|
| curl |
CVE-2025-14819 |
低危 |
8.17.0-r1 |
8.19.0-r0 |
curl: libcurl: Improper certificate validation due to cached TLS settings reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819
镜像层: sha256:6d895dca2a499d5f74e001fffce50ad78f864ea8c2a5d1f8bf91e0fa8c32f518
发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:51
|