pkg:Debian/incus

所有已知漏洞

• CRITICAL9.9CVE-2026-33945Incus has an abitrary file write through its systemd-creds options in github.com/lxc/incus
  from 0, < 6.0.6-2
• CRITICAL9.9CVE-2026-33897Incus vulnerable to arbitrary file read and write through pongo templates in github.com/lxc/incus
  from 0, < 6.0.4-2+deb13u5
• CRITICAL9.1LXD: VM lowlevel restriction bypass via raw.apparmor and raw.qemu.conf
  from 0, < 6.0.2-1
• CRITICAL9.1LXD: Importing a crafted backup leads to project restriction bypass
  from 0, < 6.0.4-2+deb13u6
• CRITICAL9.1LXD: Update of type field in restricted TLS certificate allows privilege escalation to cluster admin
  from 0, < 6.0.4-2+deb13u6
• HIGH8.8Local Incus UI web server vulnerable to nuthentication bypass in github.com/lxc/incus
  from 0
• HIGH8.7Incus container image templating arbitrary host file read and write in github.com/lxc/incus
  from 0, < 6.0.4-2+deb13u4
• HIGH8.7lxd - security update
  from 0, < 6.0.4-2+deb13u4
• HIGH8.7lxd - security update
  from 0, < 6.0.4-2+deb13u4
• HIGH8.3lxd - security update
  from 0, < 6.0.4-2+deb13u1
• HIGH8.3lxd - security update
  from 0, < 6.0.4-2+deb13u1
• HIGH7.8Incus vulnerable to local privilege escalation through VM screenshot path in github.com/lxc/incus
  from 0
• HIGH7.8lxd - security update
  from 0, < 6.0.4-2+deb13u2
• HIGH7.8lxd - security update
  from 0, < 6.0.4-2+deb13u2
• MEDIUM6.8Privilege Escalation via WebSocket Connection Hijacking in Operations API in github.com/canonical/lxd
  from 0, < 6.0.4-2+deb13u1
• MEDIUM6.5Incus has Nil Dereferences on Restore via Malformed YAML
  from 0, < 6.0.4-2+deb13u7
• MEDIUM6.5Incus has Nil-Pointer Dereference via S3 Bucket Import
  from 0, < 6.0.4-2+deb13u7
• MEDIUM6.5Incus Vulnerable to Panic via Snapshot Bounds Check
  from 0, < 6.0.4-2+deb13u7
• MEDIUM6.5Incus has a Nil-Pointer Dereference via Custom Volume Import
  from 0, < 6.0.4-2+deb13u7
• MEDIUM6.5Incus has a Nil-Pointer Dereference Panic via Bucket Metadata
  from 0, < 6.0.4-2+deb13u7
• MEDIUM6.5Incus vulnerable to denial of source through crafted bucket backup file in github.com/lxc/incus
  from 0, < 6.0.4-2+deb13u5
• MEDIUM6.5Canonical LXD Arbitrary File Read via Template Injection in Snapshot Patterns in github.com/lxc/lxd
  from 0, < 6.0.4-2+deb13u1
• MEDIUM6.5Canonical LXD Path Traversal Vulnerability in Instance Log File Retrieval Function in github.com/canonical/lxd
  from 0, < 6.0.4-2+deb13u1
• MEDIUM5.3Canonical LXD Project Existence Determination Through Error Handling in Image Export Function in github.com/canonical/lxd
  from 0, < 6.0.4-2+deb13u1
• MEDIUM5.3Canonical LXD Project Existence Determination Through Error Handling in Image Get Function in github.com/canonical/lxd
  from 0, < 6.0.4-2+deb13u1
• MEDIUM5.0Incus has Unbounded YAML Metadata Decode via Parsing
  from 0, < 6.0.4-2+deb13u7
• MEDIUM4.8Incus does not verify combined fingerprint when downloading images from simplestreams servers in github.com/lxc/incus
  from 0, < 6.0.4-2+deb13u5
• MEDIUM4.3Incus is affected by unbounded binary import disk exhaustion
  from 0, < 6.0.4-2+deb13u7
• MEDIUM4.3Incus has Blind SSRF via Image Import Preflight HEAD
  from 0, < 7.0.0-1
• MEDIUM4.1Canonical LXD Source Container Identification Vulnerability via cmdline Spoofing in devLXD Server in github.com/canonical/lxd
  from 0, < 6.0.4-2+deb13u1
• LOW3.8CA certificate sign check bypass in github.com/canonical/lxd
  from 0, < 6.0.3-1
• LOW2.3Incus has an OVN TLS Verification that Accepts Peer-Supplied Roots
  from 0, < 6.0.4-2+deb13u7
• —(無摘要)
  from 0
• —(無摘要)
  from 0
• —(無摘要)
  from 0
• —Incus has a Nil-Pointer Dereference Panic via Instance Backup Import (volume omitted)
  from 0
• —lxd - security update
  from 0, < 6.0.4-2+deb13u5
• —lxd - security update
  from 0, < 6.0.4-2+deb13u5
• —Path traversal in Canonical LXD LXD-UI versions before 6.5 and 5.21.4 on all platforms allows remote authenticated attackers to access or m…
  from 0