Aggregator

根据 Human Security 发布的《The State of AI Traffic》报告，AI 和机器人流量正式超过了人类。报告称在 2025 年包括 AI 在内的自动化流量增长速度几乎是人类活动的八倍。OpenAI 的 ChatGPT、Anthropic 的 Claude 和 Google 的 Gemini 等大模型的流行推动了 AI 流量的增长，2025 年 AI 流量增长了 187%。Cloudflare CEO Matthew Prince 此前在 SXSW 会议上表示，在生成式 AI 时代之前，互联网流量中约有 20% 来自机器人，主要由 Google的 Web 爬虫驱动。

A vulnerability was found in Linux Kernel up to 7.0-rc2. It has been declared as critical. This issue affects the function mcp251x_open. The manipulation results in deadlock. This vulnerability is identified as CVE-2026-23357. The attack can only be performed from the local network. There is not any exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.18.16/6.19.6/7.0-rc2. The affected element is an unknown function of the component HID. The manipulation results in null pointer dereference. This vulnerability is known as CVE-2026-23349. Access to the local network is required for this attack. No exploit is available. You should upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.19.6/7.0-rc2 and classified as critical. The impacted element is the function __xe_exec_queue_fini. This manipulation causes allocation of resources. This vulnerability is handled as CVE-2026-23350. The attack can only be done within the local network. There is not any exploit available. The affected component should be upgraded.

A vulnerability was found in Linux Kernel up to 6.19.6/7.0-rc2 and classified as critical. This affects the function libeth_rx_fq_create of the component ice. Such manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2026-23353. The attack can only be initiated within the local network. No exploit exists. It is suggested to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 7.0-rc1. It has been classified as critical. This impacts the function drbd_al_begin_io_nonblock. Performing a manipulation results in improper update of reference count. This vulnerability was named CVE-2026-23356. The attack needs to be approached within the local network. There is no available exploit. Upgrading the affected component is recommended.

A vulnerability marked as critical has been reported in Linux Kernel up to 6.18.16/6.19.6/7.0-rc1. This issue affects the function error_detected. Performing a manipulation results in uninitialized pointer. This vulnerability is cataloged as CVE-2026-23358. The attack must originate from the local network. There is no exploit available. It is suggested to upgrade the affected component.

A vulnerability described as critical has been identified in Linux Kernel up to 6.12.76/6.18.16/6.19.6/7.0-rc2. Impacted is the function nvme_alloc_admin_tag_set. Executing a manipulation can lead to memory leak. This vulnerability is registered as CVE-2026-23360. The attack requires access to the local network. No exploit is available. Upgrading the affected component is recommended.

A vulnerability was found in Linux Kernel up to 7.0-rc2. It has been declared as critical. This affects the function efi_free_boot_services of the component EFI Boot Service. Executing a manipulation can lead to improper initialization. This vulnerability is handled as CVE-2026-23352. The attack can only be done within the local network. There is not any exploit available. It is recommended to upgrade the affected component.

A vulnerability identified as critical has been detected in Linux Kernel up to 6.12.76/6.18.16/6.19.6/7.0-rc1. Affected by this vulnerability is the function fred_extint. This manipulation causes stack-based buffer overflow. The identification of this vulnerability is CVE-2026-23354. The attack needs to be done within the local network. There is no exploit available. You should upgrade the affected component.

A vulnerability described as critical has been identified in Linux Kernel up to 7.0-rc1. This vulnerability affects the function get_upper_ifindexes. Executing a manipulation can lead to out-of-bounds write. This vulnerability is tracked as CVE-2026-23359. The attack is only possible within the local network. No exploit exists. Upgrading the affected component is recommended.

A vulnerability classified as critical has been found in Linux Kernel up to 7.0-rc2. The impacted element is the function call_rcu of the component nft_set_pipapo. This manipulation causes denial of service. This vulnerability is tracked as CVE-2026-23351. The attack is only possible within the local network. No exploit exists. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.18.17/6.19.6/7.0-rc1/7.0-rc2. It has been classified as critical. The impacted element is an unknown function of the component libata. Performing a manipulation results in privilege escalation. This vulnerability is known as CVE-2026-23355. Access to the local network is required for this attack. No exploit is available. Upgrading the affected component is recommended.

嗯，用户让我用中文总结这篇文章，控制在100字以内，而且不需要用“文章内容总结”这样的开头。好的，我先仔细读一下文章内容。 文章主要讲的是日本的JAXA机构暂停了他们的小型试验机RV-X的飞行试验。原因是燃料注入管拆卸装置出了问题，导致飞行无法进行。他们本来计划在7号飞行，但因为天气不好推迟了几次，结果又遇到了技术问题。JAXA的目标是开发可重复使用的火箭技术，这样可以降低成本和提高发射频率。SpaceX已经在这方面取得了成功，而日本也在加紧研发，希望应用到主力火箭上，比如发射政府卫星的火箭。 好的，现在我要把这些信息浓缩到100字以内。首先提到JAXA暂停试验，原因是什么？燃料注入管的问题。然后说明这是为了开发可重复使用火箭技术的目的，以及SpaceX的成功和日本的目标。 可能的结构是：JAXA暂停RV-X试验因燃料管拆卸装置故障；旨在开发可重复使用火箭技术以降低成本和提高发射频率；SpaceX已成功应用该技术；日本希望将其用于主力火箭研发。 这样大概在100字左右吧。检查一下有没有遗漏的重要信息：暂停的原因、技术目标、SpaceX的例子、日本的应用目标。都涵盖了。 日本宇宙航空研究开发机构 (JAXA）暂停了可重复使用火箭“RV-X”的飞行试验，因燃料注入管拆卸装置故障。该技术旨在降低成本和提高发射频率，SpaceX已成功应用。日本正加紧研发以应用于主力火箭。

Мессенджер тестирует публичную пометку для аккаунтов, которые заходят через сторонние приложения.

A vulnerability categorized as critical has been discovered in hCaptcha for WP Plugin up to 4.22.0 on WordPress. Affected is an unknown function. Executing a manipulation can lead to missing authorization. The identification of this vulnerability is CVE-2026-25315. The attack may be launched remotely. There is no exploit available.

This issue appears to be a false-positive. Please verify the sources mentioned and consider not using this entry at all.

This issue was flagged as a false-positive. Please consult the sources mentioned and consider not using this entry at all. During the analysis of our data team we suspected a duplicate CVE assignment as CVE-2026-32287.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.18.16/6.19.6/7.0-rc1. Affected is the function cxl_acpi_probe of the file cxl-translate.sh. This manipulation causes null pointer dereference. This vulnerability is handled as CVE-2026-23348. The attack can only be done within the local network. There is not any exploit available. It is advisable to upgrade the affected component.