Aggregator

Цена одного короткого визита оказалась фатальной для всей системы безопасности.

Warner Bros. Discovery 以每周一集的频率将著名科幻剧集《巴比伦五号（Babylon 5）》上传到 YouTube 供所有人免费观看。第一季第一集《The Gatherin》于 1 月 22 日上传，目前观看量 25 万，第二集《Midnight on the Firing Line》和第三集《Soul Hunter》也都已经发布，这一发布频率沿用了《巴比伦五号》最早播出时的时间表，此举旨在让观众以相同的节奏体验剧情。《巴比伦五号》于 1993 年 2 月 22 日首播，共制作了五季 110 集，故事发生在 2257－2262 年，地球各国、火星、以及比邻星的殖民地组成的“地球联盟”已和其他外星文明接触，并且取得超空间技术可以超光速航行。故事开始之前十年，地球差点在一场星际战争中被明巴利人（Minbari）歼灭，但明巴利人在胜利前夕突然投降。为了避免悲剧重演，双方建立了和平往来的管道，人类建造了巴比伦五号太空站用作和平外交和贸易。此时的巴比伦五号成为了政治阴谋、种族冲突和一场大战的焦点，而地球切断了与盟友的联系，正滑向法西斯主义。

Indrukwekkende beelden van Defensie tijdens het blussen van enorme bosbranden in Spanje. Het materiaal van afgelopen zomer leverde sergeant-majoor Aaron Zwaal de eerste prijs op. De YATA Photo Award ontving de defensiefotograaf afgelopen weekend in München. De internationale wedstrijd eert fotografen die de menselijke essentie van veiligheid, veerkracht en solidariteit vastleggen.

A vulnerability identified as problematic has been detected in Linux Kernel up to 6.14.1. This affects the function clear_inode of the file fs/inode.c of the component jfs. The manipulation leads to information disclosure. This vulnerability is referenced as CVE-2025-37925. The attack needs to be initiated within the local network. No exploit is available. You should upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.133/6.6.86/6.12.22/6.13.10/6.14.1. It has been declared as problematic. This affects the function build_prologue of the component LoongArch. Executing a manipulation can lead to off-by-one. This vulnerability is handled as CVE-2025-37893. The attack can only be done within the local network. There is not any exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.14.18/5.15.2. This affects the function es58x_rx_err_msg. Executing a manipulation can lead to memory leak. This vulnerability is handled as CVE-2021-47671. The attack can only be done within the local network. There is not any exploit available. You should upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.14.1. This affects the function ef100_process_design_param. The manipulation leads to null pointer dereference. This vulnerability is documented as CVE-2025-37860. The attack requires being on the local network. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.14.1 and classified as problematic. Affected by this vulnerability is the function ext4_empty_dir. Such manipulation of the argument new leads to out-of-bounds read. This vulnerability is traded as CVE-2025-37785. Access to the local network is required for this attack to succeed. There is no exploit available. It is suggested to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel. The affected element is the function ssi_protocol_probe of the component HSI. The manipulation leads to use after free. This vulnerability is listed as CVE-2025-37838. The attack must be carried out from within the local network. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.10.10. The affected element is the function netif_rx_ni. Such manipulation leads to use after free. This vulnerability is traded as CVE-2021-47668. Access to the local network is required for this attack to succeed. There is no exploit available. Upgrading the affected component is advised.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 4.19.170/5.4.92/5.10.10. The impacted element is the function peak_usb_netif_rx_ni. Performing a manipulation results in use after free. This vulnerability is known as CVE-2021-47670. Access to the local network is required for this attack. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability identified as critical has been detected in Linux Kernel up to 4.14.217/4.19.170/5.4.92/5.10.10. This issue affects the function netif_rx_ni of the component vxcan. The manipulation leads to use after free. This vulnerability is listed as CVE-2021-47669. The attack must be carried out from within the local network. There is no available exploit. You should upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.9.8 and classified as critical. This impacts the function can_get_echo_skb of the file net/core/skbuff.c. The manipulation leads to improper update of reference count. This vulnerability is uniquely identified as CVE-2020-36789. The attack can only be initiated within the local network. No exploit exists. The affected component should be upgraded.

A vulnerability was found in Linux Kernel up to 6.6.58/6.11.5. It has been declared as problematic. The impacted element is the function vmxnet3_xdp_xmit_frame of the component vmxnet3. The manipulation results in out-of-bounds write. This vulnerability is reported as CVE-2024-58099. The attacker must have access to the local network to execute the attack. No exploit exists. It is recommended to upgrade the affected component.

A dangerous new version of LockBit ransomware has emerged, targeting multiple operating systems and threatening businesses worldwide. LockBit 5.0, released in September 2025, represents a major upgrade to one of the most active ransomware families in recent years. This version supports Windows, Linux, and ESXi platforms, making it a versatile threat capable of attacking diverse […]

The post LockBit’s New 5.0 Version Attacking Windows, Linux and ESXi Systems appeared first on Cyber Security News.

Palo Alto Networks has finalized its acquisition of CyberArk, a leading identity security firm, in a landmark $25 billion deal. This completion, announced on February 11, 2026, positions identity security as a foundational element of the company’s platform strategy amid rising AI-driven threats. The deal addresses the escalating role of identities in cyberattacks, where machine […]

The post Palo Alto Networks Completed Acquisition of Identity Security Firm CyberArk appeared first on Cyber Security News.

Эра накопления системных долгов медленно подходит к концу.

Currently trending CVE - Hype Score: 3 - The PPOM – Product Addons & Custom Fields for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the image cropper functionality in all versions up to, and including, 33.0.15. This makes it possible for unauthenticated ...

Currently trending CVE - Hype Score: 12 - A vulnerability, which was classified as problematic, has been found in FastAdmin up to 1.3.3.20220121. Affected by this issue is some unknown functionality of the file /index/ajax/lang. The manipulation of the argument lang leads to path traversal. The attack may be launched ...