quay.io/kuberay/operator:v1.2.1 linux/arm64

quay.io/kuberay/operator:v1.2.1 - Trivy安全扫描结果 扫描时间: 2025-02-13 11:18 温馨提示: 这是一个 linux/arm64 系统架构镜像
全部漏洞信息
低危漏洞:9 中危漏洞:6 高危漏洞:2 严重漏洞:0

系统OS: debian 12.6 扫描引擎: Trivy 扫描时间: 2025-02-13 11:18

quay.io/kuberay/operator:v1.2.1 (debian 12.6) (debian)
低危漏洞:9 中危漏洞:4 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
libssl3 CVE-2024-4603 中危 3.0.13-1~deb12u1 3.0.14-1~deb12u1 openssl: Excessive time spent checking DSA keys and parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4603

镜像层: sha256:24dedb995be96f60d60aa7b01e30c28f8bcdf9986fd88f0abbb8cb7dd32c971d

发布日期: 2024-05-16 16:15 修改: 2024-10-14 15:15
libssl3 CVE-2024-4741 中危 3.0.13-1~deb12u1 3.0.14-1~deb12u1 openssl: Use After Free with SSL_free_buffers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741

镜像层: sha256:24dedb995be96f60d60aa7b01e30c28f8bcdf9986fd88f0abbb8cb7dd32c971d

发布日期: 2024-11-13 11:15 修改: 2024-11-13 17:01
libssl3 CVE-2024-5535 中危 3.0.13-1~deb12u1 3.0.15-1~deb12u1 openssl: SSL_select_next_proto buffer overread

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535

镜像层: sha256:24dedb995be96f60d60aa7b01e30c28f8bcdf9986fd88f0abbb8cb7dd32c971d

发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
libssl3 CVE-2024-6119 中危 3.0.13-1~deb12u1 3.0.14-1~deb12u2 openssl: Possible denial of service in X.509 name checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119

镜像层: sha256:24dedb995be96f60d60aa7b01e30c28f8bcdf9986fd88f0abbb8cb7dd32c971d

发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
libc6 CVE-2019-1010024 低危 2.36-9+deb12u7 glibc: ASLR bypass using cache of thread stack and heap

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024

镜像层: sha256:7c5a85f9a99bda3d8b97c2f211fee034c00245504de2d1e241a322a7974146e0

发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6 CVE-2019-1010025 低危 2.36-9+deb12u7 glibc: information disclosure of heap addresses of pthread_created thread

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025

镜像层: sha256:7c5a85f9a99bda3d8b97c2f211fee034c00245504de2d1e241a322a7974146e0

发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6 CVE-2019-9192 低危 2.36-9+deb12u7 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192

镜像层: sha256:7c5a85f9a99bda3d8b97c2f211fee034c00245504de2d1e241a322a7974146e0

发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
libc6 CVE-2010-4756 低危 2.36-9+deb12u7 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756

镜像层: sha256:7c5a85f9a99bda3d8b97c2f211fee034c00245504de2d1e241a322a7974146e0

发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
libc6 CVE-2018-20796 低危 2.36-9+deb12u7 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796

镜像层: sha256:7c5a85f9a99bda3d8b97c2f211fee034c00245504de2d1e241a322a7974146e0

发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
libc6 CVE-2019-1010022 低危 2.36-9+deb12u7 glibc: stack guard protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022

镜像层: sha256:7c5a85f9a99bda3d8b97c2f211fee034c00245504de2d1e241a322a7974146e0

发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6 CVE-2019-1010023 低危 2.36-9+deb12u7 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023

镜像层: sha256:7c5a85f9a99bda3d8b97c2f211fee034c00245504de2d1e241a322a7974146e0

发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libssl3 CVE-2024-2511 低危 3.0.13-1~deb12u1 3.0.14-1~deb12u1 openssl: Unbounded memory growth with session handling in TLSv1.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511

镜像层: sha256:24dedb995be96f60d60aa7b01e30c28f8bcdf9986fd88f0abbb8cb7dd32c971d

发布日期: 2024-04-08 14:15 修改: 2024-10-14 15:15
libssl3 CVE-2024-9143 低危 3.0.13-1~deb12u1 3.0.15-1~deb12u1 openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:24dedb995be96f60d60aa7b01e30c28f8bcdf9986fd88f0abbb8cb7dd32c971d

发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
manager (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:2 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
golang.org/x/net CVE-2024-45338 高危 v0.26.0 0.33.0 golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45338

镜像层: sha256:ba0279964afe74fd674401901fd66ce7a2f255b51adf2a4f0ad2726e4444212d

发布日期: 2024-12-18 21:15 修改: 2024-12-31 20:16
stdlib CVE-2024-34156 高危 1.22.6 1.22.7, 1.23.1 encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156

镜像层: sha256:ba0279964afe74fd674401901fd66ce7a2f255b51adf2a4f0ad2726e4444212d

发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib CVE-2024-34155 中危 1.22.6 1.22.7, 1.23.1 go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155

镜像层: sha256:ba0279964afe74fd674401901fd66ce7a2f255b51adf2a4f0ad2726e4444212d

发布日期: 2024-09-06 21:15 修改: 2024-11-04 17:35
stdlib CVE-2024-34158 中危 1.22.6 1.22.7, 1.23.1 go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158

镜像层: sha256:ba0279964afe74fd674401901fd66ce7a2f255b51adf2a4f0ad2726e4444212d

发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35