registry.k8s.io/kube-proxy:v1.31.2 linux/amd64

registry.k8s.io/kube-proxy:v1.31.2 - Trivy安全扫描结果扫描时间: 2024-11-07 11:02

全部漏洞信息

低危漏洞:16

中危漏洞:1

高危漏洞:0

严重漏洞:0

系统OS: debian 12.7 扫描引擎: Trivy 扫描时间: 2024-11-07 11:02

registry.k8s.io/kube-proxy:v1.31.2 (debian 12.7) (debian)

低危漏洞:15

中危漏洞:1

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	漏洞信息
libssl3	CVE-2024-5535	中危	3.0.14-1~deb12u2	openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
coreutils	CVE-2017-18018	低危	9.1-1	coreutils: race condition vulnerability in chown and chgrp 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2018-01-04 04:29 修改: 2018-01-19 15:46
iptables	CVE-2012-2663	低危	1.8.9-2	iptables: --syn flag bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2012-2663 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2014-02-15 14:57 修改: 2023-11-07 02:10
libc6	CVE-2010-4756	低危	2.36-9+deb12u8	glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
libc6	CVE-2018-20796	低危	2.36-9+deb12u8	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
libc6	CVE-2019-1010022	低危	2.36-9+deb12u8	glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-1010023	低危	2.36-9+deb12u8	glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-1010024	低危	2.36-9+deb12u8	glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-1010025	低危	2.36-9+deb12u8	glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-9192	低危	2.36-9+deb12u8	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
libip4tc2	CVE-2012-2663	低危	1.8.9-2	iptables: --syn flag bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2012-2663 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2014-02-15 14:57 修改: 2023-11-07 02:10
libip6tc2	CVE-2012-2663	低危	1.8.9-2	iptables: --syn flag bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2012-2663 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2014-02-15 14:57 修改: 2023-11-07 02:10
libjansson4	CVE-2020-36325	低危	2.14-2	jansson: out-of-bounds read in json_loads() due to a parsing error 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36325 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2021-04-26 18:15 修改: 2024-08-04 18:15
coreutils	CVE-2016-2781	低危	9.1-1	coreutils: Non-privileged session can escape to the parent session in chroot 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
libssl3	CVE-2024-9143	低危	3.0.14-1~deb12u2	openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2024-10-16 17:15 修改: 2024-10-18 12:53
libxtables12	CVE-2012-2663	低危	1.8.9-2	iptables: --syn flag bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2012-2663 镜像层: sha256:88235a6ff08c74db38402d57811d25fe77f33f395e89e2b3b187df50d6dacd20 发布日期: 2014-02-15 14:57 修改: 2023-11-07 02:10

go-runner (gobinary)

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

usr/local/bin/kube-proxy (gobinary)

低危漏洞:1

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
github.com/opencontainers/runc	CVE-2024-45310	低危	v1.1.13	1.1.14, 1.2.0-rc.3	runc: runc can be tricked into creating empty files/directories on host 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45310 镜像层: sha256:54cddbc5055ab0b98dbd20afc3859c9b0eaed4562123811a174205a4fde4b148 发布日期: 2024-09-03 19:15 修改: 2024-09-03 19:40

软件包

漏洞

安全状态

安装版本

修复版本

漏洞信息

github.com/opencontainers/runc

CVE-2024-45310

低危

v1.1.13

1.1.14, 1.2.0-rc.3

runc: runc can be tricked into creating empty files/directories on host

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45310

镜像层: sha256:54cddbc5055ab0b98dbd20afc3859c9b0eaed4562123811a174205a4fde4b148

发布日期: 2024-09-03 19:15 修改: 2024-09-03 19:40