Archiv für Mai 2026

📄
soc

CVE-2026-42945: 18-Year-Old NGINX Rewrite Flaw May Enable Unauthenticated RCE

von SOC Prime

Web infrastructure bugs remain especially dangerous when they sit in widely deployed request-handling logic for years without detection. Among the latest vulnerabilities impacting NGINX Plus and NGINX Open, the CVE-2026-42945 vulnerability stands out as an 18-year-old heap buffer overflow in ngx_http_rewrite_module that can be reached by an unauthenticated attacker through crafted HTTP requests and may […]

Mehr lesen →
📄
soc

CVE-2026-46300: Fragnesia Linux Kernel Flaw Grants Root via Page Cache Corruption

von SOC Prime

Local privilege-escalation bugs remain especially dangerous when they turn an ordinary user foothold into immediate root access. The CVE-2026-46300 vulnerability, nicknamed Fragnesia, is a high-severity Linux kernel flaw in the XFRM ESP-in-TCP subsystem that allows an unprivileged local attacker to write arbitrary bytes into the page cache of read-only files and escalate privileges. Public reporting […]

Mehr lesen →
📄
gaming

Zelda Movie Gets A New Release Date (Again)

von Gamespot

Nintendo has just announced the release date for its upcoming The Legend of Zelda movie. If that sentence sounds familiar, it’s probably because this is the third time the film’s release date has been tweaked. The good news is it hasn’t been delayed again–in fact, it’s now coming out sooner than previously planned. „I would […]

Mehr lesen →