Aggregator

A vulnerability was found in Linux Kernel up to 7.0-rc4. It has been declared as critical. Affected by this issue is the function mana_hwc_destroy_channel of the component IRQ Handler. The manipulation results in null pointer dereference. This vulnerability was named CVE-2026-23454. The attack needs to be approached within the local network. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability was found in Dokuwiki 2025-05-14b. It has been rated as problematic. Affected by this issue is the function media_upload_xhr of the file media.php. The manipulation leads to denial of service. This vulnerability is listed as CVE-2026-26477. The attack may be initiated remotely. There is no available exploit.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 7.0-rc4. The impacted element is the function smc_tcp_syn_recv_sock. This manipulation causes null pointer dereference. This vulnerability appears as CVE-2026-23450. The attacker needs to be present on the local network. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.77/6.18.19/6.19.9/7.0-rc4 and classified as critical. This affects the function ieee80211_chan_bw_change of the component AP_VLAN Interface. The manipulation results in null pointer dereference. This vulnerability is known as CVE-2026-31394. Access to the local network is required for this attack. No exploit is available. It is suggested to upgrade the affected component.

A vulnerability was found in MontFerret ferret up to 2.0.0-alpha.3. It has been declared as critical. This affects the function IO::FS::WRITE. Such manipulation leads to path traversal. This vulnerability is referenced as CVE-2026-34783. It is possible to launch the attack remotely. No exploit is available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in code-projects Online FIR System 1.0. Affected by this issue is some unknown functionality of the file /complaints.sql of the component SQL Database Backup File Handler. The manipulation results in insecure storage of sensitive information. This vulnerability was named CVE-2026-5666. The attack may be performed from remote. In addition, an exploit is available.

A vulnerability marked as problematic has been reported in Feehi CMS 2.1.1. Affected by this vulnerability is an unknown functionality. This manipulation of the argument Content causes cross site scripting. This vulnerability is tracked as CVE-2026-31313. The attack is possible to be carried out remotely. No exploit exists.

A vulnerability labeled as critical has been found in tar. This issue affects some unknown processing of the component Archive Handler. Such manipulation leads to injection. This vulnerability is listed as CVE-2026-5704. The attack may be performed from remote. There is no available exploit.

Теперь авторам масштабных преступлений придётся очень долго оглядываться по сторонам.

Wireless network operators are preparing for a generation of infrastructure where AI is built into the architecture from the start. Sixth-generation networks, expected to reach commercial development over the coming decade, are being designed with AI at the center of how spectrum is allocated, traffic is routed, and failures are detected. A paper by researchers at Harokopio University of Athens examines how different AI techniques map to specific layers of 6G network design, from the … More →

The post 6G network design puts AI at the center of spectrum, routing, and fault management appeared first on Help Net Security.

好的，用户让我总结一篇文章的内容，控制在100字以内，并且不需要特定的开头。首先，我需要理解文章的主要内容。 文章讲的是Suno，一个AI音乐制作工具，正在与环球音乐集团和索尼音乐娱乐谈判授权协议。问题出在用户能否分享他们用AI生成的歌曲。环球希望这些歌曲只能在Suno应用内使用，不能自由传播，而Suno则希望用户能更广泛地分享。 另外，华纳音乐之前起诉过Suno，但后来达成了协议，允许用户使用艺术家的声音等元素。环球还与另一个工具Udio有协议，但禁止下载生成的创作。 总结的时候要抓住关键点：Suno与唱片公司的谈判、分享权限的分歧、华纳的情况以及环球与其他工具的关系。确保在100字以内清晰表达这些信息。 Suno与环球、索尼就AI音乐分享问题谈判未果。环球希望限制AI生成歌曲传播，而Suno支持更广泛分享。华纳已与Suno达成协议允许使用艺术家素材。环球与Udio协议禁止下载AI创作。

シックス・アパート株式会社が提供するMovable Typeには複数の脆弱性が存在します。

A CVSS score 6.5 AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L severity vulnerability discovered by 'FuzzOps of TrendAI Zero Day Initiative' was reported to the affected vendor on: 2026-04-08, 6 days ago. The vendor is given until 2026-08-06 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Mat Powell of TrendAI Zero Day Initiative' was reported to the affected vendor on: 2026-04-08, 6 days ago. The vendor is given until 2026-08-06 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Mat Powell of TrendAI Zero Day Initiative' was reported to the affected vendor on: 2026-04-08, 6 days ago. The vendor is given until 2026-08-06 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'rgod' was reported to the affected vendor on: 2026-04-08, 6 days ago. The vendor is given until 2026-08-06 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'David Bors (@davidxbors), Catalin Iovita (@cataliniovita)' was reported to the affected vendor on: 2026-04-08, 6 days ago. The vendor is given until 2026-08-06 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.1 AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'p0her' was reported to the affected vendor on: 2026-04-08, 6 days ago. The vendor is given until 2026-08-06 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.1 AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:L severity vulnerability discovered by 'Nicholas Zubrisky (@NZubrisky) of TrendAI Research' was reported to the affected vendor on: 2026-04-08, 6 days ago. The vendor is given until 2026-08-06 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'rgod' was reported to the affected vendor on: 2026-04-08, 6 days ago. The vendor is given until 2026-08-06 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.