Aggregator

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.13.3. Affected by this issue is the function mi_enum_attr of the component ntfs3. The manipulation leads to privilege escalation. This vulnerability is handled as CVE-2024-52560. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 5.15.50/5.18.7. This affects the function psock_update_sk_prot of the component sock. The manipulation leads to information disclosure. This vulnerability is uniquely identified as CVE-2022-49732. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.11.10/6.12.1. It has been declared as problematic. This vulnerability affects the function uof_get_name of the component qat_420xx. The manipulation of the argument fw_objs[] leads to off-by-one. This vulnerability was named CVE-2024-53163. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Linux Kernel up to 6.12.1. This affects the function mem_ctrl_idx of the component bluefield. The manipulation leads to integer overflow. This vulnerability is uniquely identified as CVE-2024-53161. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

HackerNews 编译，转载请注明出处： 美国阿拉斯加航空公司当地时间7月20日（周日）发生IT系统故障，导致所有航班停飞。该公司未说明故障具体性质，这已是其一年多来第二次全面停飞。 阿拉斯加航空在周日晚间向媒体发布的声明中表示：“太平洋时间周日晚8点左右（周一格林尼治时间0300），阿拉斯加航空遭遇影响航班运营的IT故障。我们已申请对阿拉斯加航空及旗下全资支线子公司地平线航空（Horizon Air）航班实施临时全系统地面停飞令。” 这家总部位于西雅图的航空公司称，当晚运营将持续受到后续影响，但未提供更多细节。 美国联邦航空管理局（FAA）状态页面显示，阿拉斯加航空干线飞机的地面停飞和地平线航空暂停运营影响了所有目的地。 2024年4月，阿拉斯加航空曾因飞机配载平衡计算系统问题全面停飞，此次事件距其波音737 MAX 9型客机舱门半空脱落事故仅数月之隔。 根据官网信息，阿拉斯加航空集团现运营238架波音737客机和87架巴航工业175客机。 今年6月，该集团旗下的夏威夷航空公司称部分IT系统遭黑客攻击。阿拉斯加航空集团表示仍在评估该事件的财务影响。 此次故障发生时，正值科技公司谷歌和Palo Alto Networks警告“Scattered Spider”黑客组织盯上航空业之际。 加拿大西捷航空6月遭遇不明网络攻击 澳大利亚澳航7月发生数据泄露事件，数百万客户信息遭窃 目前尚不清楚阿拉斯加航空故障是否与微软周日所称“政府机构和企业所用服务器软件遭主动攻击”有关。截至发稿，阿拉斯加航空未回应媒体关于两者关联性的质询。         消息来源： cybernews； 本文由 HackerNews.cc 翻译整理，封面来源于网络； 转载请注明“转自 HackerNews.cc”并附上原文

文章介绍了错误代码521的原因和影响，指出该错误通常与Cloudflare服务相关，可能由服务器配置问题或网络连接故障引起，并建议用户联系网络提供商或检查DNS设置以解决问题。

A vulnerability has been found in CADImage Plugin on IrfanView and classified as critical. Affected by this vulnerability is an unknown functionality of the component DXF File Parser. The manipulation leads to memory corruption. This vulnerability is known as CVE-2025-7271. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in CADImage Plugin on IrfanView and classified as critical. Affected by this issue is some unknown functionality of the component DXF File Parser. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2025-7272. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in CADImage Plugin on IrfanView. It has been classified as critical. This affects an unknown part of the component DWG File Parser. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2025-7277. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in CADImage Plugin on IrfanView. It has been declared as critical. This vulnerability affects unknown code of the component DWG File Parser. The manipulation leads to memory corruption. This vulnerability was named CVE-2025-7274. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in CADImage Plugin on IrfanView. Affected is an unknown function of the component DXF File Parser. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2025-7273. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in CADImage Plugin on IrfanView. Affected by this issue is some unknown functionality of the component CGM File Parser. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2025-7275. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in CADImage Plugin on IrfanView and classified as critical. This vulnerability affects unknown code of the component DWG File Parser. The manipulation leads to memory corruption. This vulnerability was named CVE-2025-7270. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in CADImage Plugin on IrfanView and classified as critical. This issue affects some unknown processing of the component DXF File Parser. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2025-7276. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in CADImage Plugin on IrfanView. It has been classified as critical. Affected is an unknown function of the component DXF File Parser. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2025-7278. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in CADImage Plugin on IrfanView. It has been rated as critical. Affected by this issue is some unknown functionality of the component CGM File Parser. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2025-7279. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in CADImage Plugin on IrfanView. This affects an unknown part of the component DWG File Parser. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2025-7280. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle iStore up to 12.2.14. It has been classified as critical. This affects an unknown part of the component Shopping Cart. The manipulation leads to cross-site request forgery. This vulnerability is uniquely identified as CVE-2025-30746. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Currently trending CVE - Hype Score: 13 - There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.