Aggregator

文章介绍了互联网发展史上的重要人物、神秘事件和网络文化现象，包括病毒创造者Dark Avenger、比特币发明者Satoshi Nakamoto、神秘组织Cicada 3301等。

随着交通战略的深入实施，铁路、公路、水运、航空等综合交通运输体系正加速数字化转型，网络安全面临全新挑战。智能高铁控制系统、自动驾驶公路网、智慧港口、民航空管系统等关键信息基础设施的互联互通，使得网络安全风险呈现跨领域、跨地域传导的新特征。 嘶吼安全产业研究院基于《2025网络安全产业图谱》调研，通过对400+典型解决方案与案例的深度分析，从需求匹配度、实践成效、创新技术、应用价值等多维度展开综合评估。 调研分析发现，交通行业网络安全建设呈现出三个主要趋势：网络安全防护范围已从传统的信息技术系统延伸至智能终端、互联路网、云端平台，三位一体的新型交通基础设施体系。这意味着安全防线要同时覆盖车载终端、路侧设备、云端平台等多个维度，建立立体化的防护网络。其次，安全标准正在升级。过去主要关注系统可用性，现在则要同时确保交通控制的精准性、实时性和可靠性。比如，交通信号控制系统必须能够抵御网络攻击，确保信号切换的准确无误。再者，数据安全被提到新高度。随着电子地图、出行轨迹等数据价值凸显，如何在保证数据流通的同时防止信息泄露，成为行业必须解决的难题。 基于这些发现，我们将重点展示几个具有代表性的交通行业优秀安全解决方案，为交通行业的安全建设提供可借鉴的实践经验。 PS：解决方案展示排名不分先后，按企业简称首字母排序。 往期回顾： 2025中国网络安全「政务行业」优秀解决方案汇编 2025中国网络安全「金融行业」优秀解决方案汇编 2025中国网络安全「能源行业」优秀解决方案汇编 2025中国网络安全「制造行业」优秀解决方案汇编 2025中国网络安全「电力（水利）行业」优秀解决方案汇编 2025中国网络安全「互联网行业」优秀解决方案汇编 2025中国网络安全「运营商行业」优秀解决方案汇编 2025中国网络安全「医疗行业」优秀解决方案汇编 2025中国网络安全「教育行业」优秀解决方案汇编

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.15.3. Affected is the function arch_bpf_trampoline_size. The manipulation leads to allocation of resources. This vulnerability is traded as CVE-2025-38339. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.15.3. This issue affects the function p54_rx_eeprom_readback of the component wifi. The manipulation leads to buffer overflow. The identification of this vulnerability is CVE-2025-38348. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.6.94/6.12.34/6.15.3. This vulnerability affects the function hung_task_timeout_secs of the file /proc/sys/kernel/hung_task_timeout_secs of the component f2fs. The manipulation leads to deadlock. This vulnerability was named CVE-2025-38347. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Linux Kernel up to 6.6.94/6.12.34/6.15.3. This affects an unknown part of the component wifi. The manipulation leads to privilege escalation. This vulnerability is uniquely identified as CVE-2025-38343. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.15.3. It has been rated as problematic. Affected by this issue is the function software_node_get_reference_args. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2025-38342. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.34/6.15.3/6.16-rc2. It has been classified as critical. Affected is the function fbnic_mbx_map_msg of the component eth. The manipulation leads to double free. This vulnerability is traded as CVE-2025-38341. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.16-rc2. It has been declared as critical. Affected by this vulnerability is the function pata_via of the component ata. The manipulation leads to denial of service. This vulnerability is known as CVE-2025-38336. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.15.3 and classified as problematic. This issue affects the function gpio_keys_irq_timer of the file kernel/locking/spinlock_rt.c. The manipulation leads to privilege escalation. The identification of this vulnerability is CVE-2025-38335. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.141/6.6.94/6.12.34/6.15.3 and classified as problematic. This vulnerability affects the function arch_memory_failure of the component SGX Page. The manipulation leads to state issue. This vulnerability was named CVE-2025-38334. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.6.94/6.12.34/6.15.3. This affects the function nfs_return_empty_folio. The manipulation leads to deadlock. This vulnerability is uniquely identified as CVE-2025-38338. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.15.3. Affected by this vulnerability is the function jbd2_journal_dirty_metadata of the component jbd2. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2025-38337. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.15.3. Affected by this issue is the function cs_dsp_mock_bin_add_name_or_info of the component firmware. The manipulation leads to allocation of resources. This vulnerability is handled as CVE-2025-38340. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.15.3. Affected is the function kmem_cache_destroy of the file dswstate.c of the component SCI Handler. The manipulation leads to memory leak. This vulnerability is traded as CVE-2025-38345. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.15.3. It has been rated as critical. This issue affects the function kmem_cache_create of the component SCI Handler. The manipulation leads to memory leak. The identification of this vulnerability is CVE-2025-38344. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.15.3. It has been declared as critical. This vulnerability affects the function ftrace_mod_get_kallsym of the component ftrace. The manipulation leads to memory corruption. This vulnerability was named CVE-2025-38346. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

Браузер не понимает, кому верить, а сервер ошибается.

A vulnerability was found in Linux Kernel up to 6.12.34/6.15.3. It has been classified as problematic. This affects the function get_new_segment of the file fs/f2fs/segment.c of the component f2fs. The manipulation leads to allocation of resources. This vulnerability is uniquely identified as CVE-2025-38333. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.141/6.6.94/6.12.34/6.15.3 and classified as critical. Affected by this issue is some unknown functionality of the component net. The manipulation leads to buffer overflow. This vulnerability is handled as CVE-2025-38331. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.