Aggregator

Your platform is open 24 hours a day. So are the attacks.There’s no closing time in e-commerce, hen

CERT/CCから本件に関するアドバイザリが公表されました。

A vulnerability labeled as problematic has been found in urllib3 up to 2.6.x on Python. Impacted is the function HTTPResponse.drain_conn. Such manipulation leads to highly compressed data. This vulnerability is uniquely identified as CVE-2026-44432. The attack can be launched remotely. No exploit exists. The affected component should be upgraded.

A vulnerability marked as critical has been reported in Red Hat Enterprise Linux and OpenShift Container Platform. This vulnerability affects unknown code. Performing a manipulation results in heap-based buffer overflow. This vulnerability is known as CVE-2026-12725. Remote exploitation of the attack is possible. No exploit is available.

A vulnerability marked as problematic has been reported in urllib3 up to 2.6.x on Python. The affected element is the function ProxyManager.connection_from_url.urlopen. Performing a manipulation results in information disclosure. This vulnerability was named CVE-2026-44431. The attack may be initiated remotely. There is no available exploit. It is suggested to upgrade the affected component.

A vulnerability labeled as problematic has been found in Red Hat Enterprise Linux 6/7/8/9/10. This affects an unknown part. Such manipulation leads to buffer access with incorrect length value. This vulnerability is traded as CVE-2026-12549. The attack may be launched remotely. There is no exploit available. Applying a patch is advised to resolve this issue.

CERT/CCから本件に関するアドバイザリが公表されました。

亚马逊投流 ChatGPT；智谱 GLM-5.5 或八月升级；SK 海力士大规模招聘引发行业巨震

Most stories miss the most critical part of FortiBleed - the firewall wasn't the destinati

苹果批准可折叠iPhone的OLED面板生产三星显示已获得苹果公司批准，开始为苹果首款可折叠iPhone进行OLED面板的模组生产。据悉，三星显示已开始运营其在越南的部分后端生产线，以履行今年交付约

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.18.13/6.19.3. This affects the function mtk_clk_register_gate of the component clk. Executing a manipulation can lead to improper initialization. This vulnerability appears as CVE-2026-45909. The attacker needs to be present on the local network. There is no available exploit. You should upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.6.127/6.12.74/6.18.13/6.19.3 and classified as critical. This impacts the function retransmit_timer of the component rxe. The manipulation leads to use after free. This vulnerability is traded as CVE-2026-45910. Access to the local network is required for this attack to succeed. There is no exploit available. The affected component should be upgraded.

A vulnerability classified as critical was found in Linux Kernel up to 6.18.13/6.19.3. The affected element is the function netdev_trylock. Such manipulation leads to deadlock. This vulnerability is documented as CVE-2026-45907. The attack requires being on the local network. There is not any exploit available. Upgrading the affected component is advised.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.18.13/6.19.3. The impacted element is the function amdxdna_ubuf_map of the component amdxdna. Performing a manipulation results in memory leak. This vulnerability is reported as CVE-2026-45908. The attacker must have access to the local network to execute the attack. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.19.3 and classified as critical. Affected is the function power_supply_changed of the component IRQ Handler. This manipulation causes use after free. This vulnerability is registered as CVE-2026-45906. The attack requires access to the local network. No exploit is available. The affected component should be upgraded.

A vulnerability has been found in Linux Kernel up to 6.19.3 and classified as critical. This vulnerability affects the function pci_lock_rescan_remove of the component EEH Driver. This manipulation of the argument do_lock causes deadlock. This vulnerability is handled as CVE-2026-45904. The attack can only be done within the local network. There is not any exploit available. The affected component should be upgraded.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.1.164/6.6.127/6.12.74/6.18.13/6.19.3. Affected by this issue is the function icmp_route_lookup of the file net/ipv4/route.c. Such manipulation leads to information exposure through error message. This vulnerability is listed as CVE-2026-45905. The attack must be carried out locally. There is no available exploit. You should upgrade the affected component.

2026年6月23日 09:00软件资讯01.12K