Aggregator

Currently trending CVE - Hype Score: 49 - In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present The DATA-packet handler in rxrpc_input_call_event() and the RESPONSE handler in rxrpc_verify_response() copy the skb to a linear one ...

Currently trending CVE - Hype Score: 49 - In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags MSG_SPLICE_PAGES can attach pages from a pipe directly to an skb. TCP marks such skbs with SKBFL_SHARED_FRAG after skb_splice_from_iter(), so later paths ...

Currently trending CVE - Hype Score: 49 - In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since ...

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

May 15, 2026Over on Kic

美财长贝森特称中美将启动AI安全对话美国财政部长贝森特14日表示，中美两国政府将就AI安全措施启动对话。双方将推进规则制定，防止恐怖组织等 “非国家行为体” 滥用中美先进AI模型。贝森特在接受采访时表

Two employee devices at OpenAI were compromised in a sweeping software supply chain attack targeting TanStack npm, but the AI company confirmed no user data, production systems, or intellectual property were affected. On May 11, 2026 UTC, threat actors launched a campaign dubbed “Mini Shai-Hulud” a coordinated supply chain offensive orchestrated by the TeamPCP extortion […]

The post OpenAI Confirms Security Breach Via TanStack npm Supply Chain Attack appeared first on Cyber Security News.

Солнечные протоны убивают — а мы ищем их следы в кольцах 800-летних деревьев.

Matrix 首页推荐Matrix 是少数派的写作社区，我们主张分享真实的产品体验，有实用价值的经验与思考。我们会不定期挑选 Matrix 最优质的文章，展示来自用户的最真实的体验和观点。文章代表作者

马斯克旗下 xAI 在其密西西比数据中心运行着近五十台天然气轮机，这些发电厂由于一个漏洞目前不受该州监管。这些发电厂被密西西比州视为 “移动式”，因为它们位于平板拖车上，从而允许它们规避空气污染法规一

История началась с тихой публикации трёх версий, но быстро превратилась в тревожный сигнал для всей экосистемы.

继Dirty Frag、Fragnesia以及其他最近几天暴露出来的Linux内核漏洞之后，现在最新的漏洞是ssh-keysign-pwn。通过 ssh-keysign-pwn，非特权用户能够读取Ro

美国总统特朗普周四告诉记者，中国已同意购买两百架波音飞机，这一数字远低于分析师的预期。中国订购波音飞机的细节包括交付时间和具体机型尚未公布，但订购数量远少于此前路透社引述消息人士说的约五百架飞机。中国