Posts of last 24 hours
为贯彻落实党中央、国务院关于建立健全数据基础制度的决策部署,落实数据产权制度,国家数据局制定了《数据产权登记工作指引(试行)》。
https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664264284&idx=3&sn=573eb9299d6f9ecf0970950a76868038
近日,市场监管总局、商务部研究起草了《中华人民共和国电子商务法(修正草案征求意见稿)》,并向社会公开征求意见。
https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664264284&idx=2&sn=1a84b86183a8101d0f28aa4267d71b42
意见反馈截止时间为2026年8月3日。
https://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664264284&idx=1&sn=79a7bef31be81c79f20cd854c57d2372
A vulnerability, which was classified as critical, has been found in GStreamer. This affects an unknown function of the component gst-plugins-bad. The manipulation leads to out-of-bounds read.
This vulnerability is referenced as CVE-2026-52719. Remote exploitation of the attack is possible. No exploit is available.
https://vuldb.com/vuln/371226
A vulnerability was found in GStreamer. It has been declared as problematic. This affects the function gst_av1_parser_parse_tile_list_obu of the component AV1 Codec Parser. Executing a manipulation can lead to reachable assertion.
This vulnerability is registered as CVE-2026-52718. It is possible to launch the attack remotely. No exploit is available.
https://vuldb.com/vuln/371231
A vulnerability was found in FasterXML jackson-databind up to 2.21.3/3.1.3. It has been declared as critical. Impacted is the function UnwrappedPropertyHandler.processUnwrappedCreatorProperties. The manipulation results in incorrect authorization.
This vulnerability is reported as CVE-2026-54518. The attack can be launched remotely. No exploit exists.
It is recommended to upgrade the affected component.
https://vuldb.com/vuln/373093
A vulnerability classified as problematic has been found in FasterXML jackson-databind up to 2.18.8/2.21.4/3.1.3. Affected by this issue is the function BeanDeserializerBase.createContextual. This manipulation causes dynamically-determined object attributes.
The identification of this vulnerability is CVE-2026-54515. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
https://vuldb.com/vuln/373100
A vulnerability classified as problematic was found in FasterXML jackson-databind up to 2.21.3/3.1.3. This affects the function POJOPropertiesCollector._renameProperties. Such manipulation of the argument backing leads to dynamically-determined object attributes.
This vulnerability is referenced as CVE-2026-54516. It is possible to launch the attack remotely. No exploit is available.
Upgrading the affected component is advised.
https://vuldb.com/vuln/373101
A vulnerability, which was classified as problematic, has been found in FasterXML jackson-databind up to 2.21.3/3.1.3. This vulnerability affects the function SetterlessProperty.isMerging. Performing a manipulation results in incorrect authorization.
This vulnerability is identified as CVE-2026-54517. The attack can be initiated remotely. There is not any exploit available.
It is advisable to upgrade the affected component.
https://vuldb.com/vuln/373102
A vulnerability marked as critical has been reported in FasterXML jackson-databind up to 2.18.7/2.21.3/3.1.3. This vulnerability affects the function BasicPolymorphicTypeValidator.Builder.allowIfSubTypeIsArray. The manipulation of the argument EvilType[] leads to incomplete blacklist.
This vulnerability is listed as CVE-2026-54513. The attack may be initiated remotely. There is no available exploit.
It is suggested to upgrade the affected component.
https://vuldb.com/vuln/373014