Aggregator

A vulnerability was found in Linux Kernel up to 6.6.139/6.12.85/6.18.26/7.0.3. It has been rated as critical. This issue affects the function xfs_alloc_buftarg of the component xfs. This manipulation causes memory leak. This vulnerability is registered as CVE-2026-46005. The attack requires access to the local network. No exploit is available. Upgrading the affected component is advised.

A vulnerability was found in Linux Kernel up to 6.6.139/6.12.85/6.18.26/7.0.3. It has been rated as critical. This affects the function put_disk of the component scsi. This manipulation causes privilege escalation. This vulnerability is tracked as CVE-2026-45997. The attack is only possible within the local network. No exploit exists. Upgrading the affected component is advised.

A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.6.139/6.12.85/6.18.26/7.0.3. This vulnerability affects the function skb_unshare. Such manipulation leads to use after free. This vulnerability is listed as CVE-2026-45998. The attack must be carried out from within the local network. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability labeled as critical has been found in Linux Kernel up to 6.6.139/6.12.85/6.18.26/7.0.3. Impacted is the function nouveau_gem_pushbuf_reloc_apply. Executing a manipulation can lead to insufficient verification of data authenticity. This vulnerability is registered as CVE-2026-46006. The attack requires access to the local network. No exploit is available. The affected component should be upgraded.

A vulnerability marked as critical has been reported in Linux Kernel up to 6.12.87/6.18.29/7.0.3. The affected element is an unknown function of the component hwmon. The manipulation leads to buffer overflow. This vulnerability is documented as CVE-2026-46007. The attack requires being on the local network. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability described as critical has been identified in Linux Kernel up to 7.0.3. The impacted element is the function damos_walk. The manipulation results in deadlock. This vulnerability is reported as CVE-2026-46008. The attacker must have access to the local network to execute the attack. No exploit exists. Upgrading the affected component is recommended.

A vulnerability was found in Linux Kernel up to 6.6.139/6.12.87/6.18.29/7.0.3. It has been rated as critical. This affects the function z_erofs_lz4_handle_overlap. The manipulation leads to integer overflow. This vulnerability is referenced as CVE-2026-45999. The attack needs to be initiated within the local network. No exploit is available. Upgrading the affected component is advised.

A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.12.85/6.18.26/7.0.3. This impacts the function pt5161l_read_block_data. The manipulation results in buffer overflow. This vulnerability is identified as CVE-2026-46001. The attack can only be performed from the local network. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.139/6.12.85/6.18.26/7.0.3. It has been classified as critical. This affects the function setup_card of the component Caiaq Driver. The manipulation leads to use after free. This vulnerability is listed as CVE-2026-46004. The attack must be carried out from within the local network. There is no available exploit. Upgrading the affected component is recommended.

Экипажу больше не нужно рисковать жизнью за люком — за разведку отвечает рой роботов размером с ладонь.

Las Vegas, USA / Nevada, June 16th, 2026, CyberNewswire Aembit on Tuesday announced support for Copilot Studio, extending its identity and access management capabilities to Microsoft’s enterprise AI agent platform. The integration, unveiled at Identiverse 2026, gives security teams the tools to manage what Copilot Studio agents can access, under what conditions, and with a […]

The post Aembit Extends IAM for Agentic AI to Microsoft Copilot Studio appeared first on Cyber Security News.

【工具】CodeCleaner - 代码文件统计和清理工具

AI bills of materials (AIBOMs), modeled on standards that worked for software, could transform how policymakers understand and regulate AI. A new roadmap outlines what they need to include and how to get there.

The post A case for how to shape ‘ingredient lists’ for AI models appeared first on CyberScoop.

今日暂未更新资讯~
更多最新文章，请访问SecWiki

Authorities said scammers previously exploited the feature by posting fake exam questions before the test and later replacing them with the real questions, making it look like they had leaked the exam in advance.

Attackers have been spotted exploiting three vulnerabilities (CVE-2026-39813, CVE-2026-39808, CVE-2026-25089) in FortiSandbox, a platform that other Fortinet security products depend on for threat verdicts to enforce blocking decisions and trigger automated responses. The warning came on Monday from threat intelligence company Defused, which said that the exploit for one of the flaws is vibecoded, and likely faulty. The vulnerabilities Fortinet disclosed CVE-2026-39813 and CVE-2026-39808 in April 2026. The former is a path traversal vulnerability in … More →

The post Attackers are exploiting FortiSandbox vulnerabilities appeared first on Help Net Security.

A vulnerability has been found in docker and moby and classified as problematic. This impacts an unknown function. The manipulation leads to incorrect authorization. This vulnerability is uniquely identified as CVE-2026-34040. Local access is required to approach this attack. No exploit exists.

A vulnerability, which was classified as problematic, was found in Moby up to 29.3.0. This issue affects some unknown processing. Such manipulation leads to off-by-one. This vulnerability is traded as CVE-2026-33997. The attack may be launched remotely. There is no exploit available. You should upgrade the affected component.

A vulnerability identified as critical has been detected in Linux Kernel up to 6.6.139/6.12.85/6.18.26/7.0.3. Affected by this vulnerability is the function command_file_write of the component ibmasm. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2026-45994. Access to the local network is required for this attack to succeed. There is no exploit available. You should upgrade the affected component.

A vulnerability described as critical has been identified in Linux Kernel up to 6.18.26/7.0.3. This vulnerability affects the function krealloc of the component slub. Such manipulation leads to out-of-bounds write. This vulnerability is uniquely identified as CVE-2026-45990. The attack can only be initiated within the local network. No exploit exists. Upgrading the affected component is recommended.