quay.io/kiali/kiali:v1.87 linux/amd64

quay.io/kiali/kiali:v1.87 - Trivy安全扫描结果扫描时间: 2024-10-28 15:46

全部漏洞信息

低危漏洞:52

中危漏洞:6

高危漏洞:7

严重漏洞:0

系统OS: redhat 8.9 扫描引擎: Trivy 扫描时间: 2024-10-28 15:46

quay.io/kiali/kiali:v1.87 (redhat 8.9) (redhat)

低危漏洞:52

中危漏洞:3

高危漏洞:6

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
glibc	CVE-2024-2961	高危	2.28-236.el8_9.12	2.28-251.el8_10.1	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc	CVE-2024-33599	高危	2.28-236.el8_9.12	2.28-251.el8_10.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-common	CVE-2024-2961	高危	2.28-236.el8_9.12	2.28-251.el8_10.1	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc-common	CVE-2024-33599	高危	2.28-236.el8_9.12	2.28-251.el8_10.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2024-2961	高危	2.28-236.el8_9.12	2.28-251.el8_10.1	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2024-33599	高危	2.28-236.el8_9.12	2.28-251.el8_10.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc	CVE-2024-33600	中危	2.28-236.el8_9.12	2.28-251.el8_10.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-common	CVE-2024-33600	中危	2.28-236.el8_9.12	2.28-251.el8_10.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2024-33600	中危	2.28-236.el8_9.12	2.28-251.el8_10.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-common	CVE-2024-33601	低危	2.28-236.el8_9.12	2.28-251.el8_10.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-common	CVE-2024-33602	低危	2.28-236.el8_9.12	2.28-251.el8_10.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
ca-certificates	CVE-2023-37920	低危	2023.2.60_v7.0.306-80.0.el8_8	2024.2.69_v8.0.303-80.0.el8_10	python-certifi: Removal of e-Tugra root certificate 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37920 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-07-25 21:15 修改: 2023-08-12 06:16
glibc	CVE-2024-33601	低危	2.28-236.el8_9.12	2.28-251.el8_10.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc	CVE-2024-33602	低危	2.28-236.el8_9.12	2.28-251.el8_10.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2024-33601	低危	2.28-236.el8_9.12	2.28-251.el8_10.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2024-33602	低危	2.28-236.el8_9.12	2.28-251.el8_10.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libgcc	CVE-2018-20657	低危	8.5.0-20.el8		libiberty: Memory leak in demangle_template function resulting in a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15
libgcc	CVE-2019-14250	低危	8.5.0-20.el8		binutils: integer overflow in simple-object-elf.c leads to a heap-based buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14250 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2019-07-24 04:15 修改: 2023-03-01 18:01
libgcc	CVE-2022-27943	低危	8.5.0-20.el8		binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
libtasn1	CVE-2018-1000654	低危	4.13-4.el8_7		libtasn1: Infinite loop in _asn1_expand_object_id(ptree) leads to memory exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000654 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2018-08-20 19:31 修改: 2023-11-07 02:51
ncurses-base	CVE-2018-19211	低危	6.1-10.20180224.el8		ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
ncurses-base	CVE-2018-19217	低危	6.1-10.20180224.el8		ncurses: Null pointer dereference at function _nc_name_match 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19217 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2018-11-12 19:29 修改: 2024-08-05 12:15
ncurses-base	CVE-2020-19185	低危	6.1-10.20180224.el8		ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19185 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-base	CVE-2020-19186	低危	6.1-10.20180224.el8		ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19186 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-base	CVE-2020-19187	低危	6.1-10.20180224.el8		ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19187 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-base	CVE-2020-19188	低危	6.1-10.20180224.el8		ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19188 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-base	CVE-2020-19189	低危	6.1-10.20180224.el8		ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-base	CVE-2020-19190	低危	6.1-10.20180224.el8		ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19190 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-base	CVE-2021-39537	低危	6.1-10.20180224.el8		ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
ncurses-base	CVE-2023-45918	低危	6.1-10.20180224.el8		ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-02-16 22:15 修改: 2024-03-15 11:15
ncurses-base	CVE-2023-50495	低危	6.1-10.20180224.el8		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
ncurses-libs	CVE-2018-19211	低危	6.1-10.20180224.el8		ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
ncurses-libs	CVE-2018-19217	低危	6.1-10.20180224.el8		ncurses: Null pointer dereference at function _nc_name_match 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19217 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2018-11-12 19:29 修改: 2024-08-05 12:15
ncurses-libs	CVE-2020-19185	低危	6.1-10.20180224.el8		ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19185 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-libs	CVE-2020-19186	低危	6.1-10.20180224.el8		ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19186 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-libs	CVE-2020-19187	低危	6.1-10.20180224.el8		ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19187 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15
ncurses-libs	CVE-2020-19188	低危	6.1-10.20180224.el8		ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19188 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-libs	CVE-2020-19189	低危	6.1-10.20180224.el8		ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-libs	CVE-2020-19190	低危	6.1-10.20180224.el8		ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19190 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-libs	CVE-2021-39537	低危	6.1-10.20180224.el8		ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
ncurses-libs	CVE-2023-45918	低危	6.1-10.20180224.el8		ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-02-16 22:15 修改: 2024-03-15 11:15
ncurses-libs	CVE-2023-50495	低危	6.1-10.20180224.el8		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
openssl	CVE-2023-0464	低危	1:1.1.1k-12.el8_9		openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
openssl	CVE-2023-0465	低危	1:1.1.1k-12.el8_9		openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
openssl	CVE-2023-0466	低危	1:1.1.1k-12.el8_9		openssl: Certificate policy check not enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0466 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
openssl	CVE-2023-2650	低危	1:1.1.1k-12.el8_9		openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
openssl	CVE-2024-0727	低危	1:1.1.1k-12.el8_9		openssl: denial of service via null dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-01-26 09:15 修改: 2024-10-14 15:15
openssl	CVE-2024-2511	低危	1:1.1.1k-12.el8_9		openssl: Unbounded memory growth with session handling in TLSv1.3 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-04-08 14:15 修改: 2024-10-14 15:15
openssl	CVE-2024-41996	低危	1:1.1.1k-12.el8_9		openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
openssl	CVE-2024-4741	低危	1:1.1.1k-12.el8_9		openssl: Use After Free with SSL_free_buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
openssl	CVE-2024-5535	低危	1:1.1.1k-12.el8_9	1:1.1.1k-14.el8_6	openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
openssl-libs	CVE-2023-0464	低危	1:1.1.1k-12.el8_9		openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
openssl-libs	CVE-2023-0465	低危	1:1.1.1k-12.el8_9		openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
openssl-libs	CVE-2023-0466	低危	1:1.1.1k-12.el8_9		openssl: Certificate policy check not enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0466 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
openssl-libs	CVE-2023-2650	低危	1:1.1.1k-12.el8_9		openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
openssl-libs	CVE-2024-0727	低危	1:1.1.1k-12.el8_9		openssl: denial of service via null dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-01-26 09:15 修改: 2024-10-14 15:15
openssl-libs	CVE-2024-2511	低危	1:1.1.1k-12.el8_9		openssl: Unbounded memory growth with session handling in TLSv1.3 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-04-08 14:15 修改: 2024-10-14 15:15
openssl-libs	CVE-2024-41996	低危	1:1.1.1k-12.el8_9		openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
openssl-libs	CVE-2024-4741	低危	1:1.1.1k-12.el8_9		openssl: Use After Free with SSL_free_buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
openssl-libs	CVE-2024-5535	低危	1:1.1.1k-12.el8_9	1:1.1.1k-14.el8_6	openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
pcre2	CVE-2022-41409	低危	10.32-3.el8_6		pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409 镜像层: sha256:9e0049b7e408023348a977bbd1095cb3543d7230dae1e16d40b0643e4bf9d5f0 发布日期: 2023-07-18 14:15 修改: 2023-07-27 03:46

opt/kiali/kiali (gobinary)

低危漏洞:0

中危漏洞:3

高危漏洞:1

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
stdlib	CVE-2024-34156	高危	1.22.4	1.22.7, 1.23.1	encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156 镜像层: sha256:861482a3a0d4afcca7f7996d45e2113d7efb35c99cbb66acc54966e669d34ac3 发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib	CVE-2024-24791	中危	1.22.4	1.21.12, 1.22.5	net/http: Denial of service due to improper 100-continue handling in net/http 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24791 镜像层: sha256:861482a3a0d4afcca7f7996d45e2113d7efb35c99cbb66acc54966e669d34ac3 发布日期: 2024-07-02 22:15 修改: 2024-07-08 14:17
stdlib	CVE-2024-34155	中危	1.22.4	1.22.7, 1.23.1	go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155 镜像层: sha256:861482a3a0d4afcca7f7996d45e2113d7efb35c99cbb66acc54966e669d34ac3 发布日期: 2024-09-06 21:15 修改: 2024-09-09 13:03
stdlib	CVE-2024-34158	中危	1.22.4	1.22.7, 1.23.1	go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158 镜像层: sha256:861482a3a0d4afcca7f7996d45e2113d7efb35c99cbb66acc54966e669d34ac3 发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35