Posts by Tag: vulnerability
all of the articles we have posted and linked so far under the tag: vulnerability
Chromium: The Tab That Never Really Closed
TLDR and details on a Chromium vulnerability allowing attackers to run JavaScript in the background even after the browser is closed.
BIND 9: Three Cracks in the Resolver Wall
TLDR and affected version summary for three BIND 9 DNS resolver vulnerabilities causing denial of service via high CPU usage.
Drupal: The Postgres Backdoor Query
TLDR and affected version summary for CVE-2026-9082, a SQL injection vulnerability in Drupal affecting PostgreSQL deployments.
Composer: Tokens Spilled on the CI Stage
TLDR and affected version summary for CVE-2026-45793, a Composer vulnerability that may expose GitHub authentication tokens in CI logs.
NGINX njs: One Overflow to Crash Them All
TLDR and affected version summary for CVE-2026-8711, a heap buffer overflow in NGINX JavaScript (njs) that can crash workers and may allow RCE.
PostgreSQL: Eleven Stitches on a Quiet Afternoon
TLDR and affected version summary for the 11 CVEs patched in the May 14, 2026 PostgreSQL release.
NGINX: Three Cracks in the Proxy Wall
TLDR and affected version summary for NGINX Rift, CVE-2026-42926, and CVE-2026-42946
React and Next.js: Thirteen Doors Left Open
TLDR and affected version summary for the May 2026 React and Next.js security advisories.
Bleeding Llama: The Local AI That Remembered Too Much
TLDR and affected version summary for CVE-2026-7482, the Bleeding Llama vulnerability in Ollama.