security

A specially crafted Helm chart archive can expand into an enormous decompressed payload that exhausts available memory and kills the Helm process — a denial‑of‑service vector tracked as CVE‑2025‑32386 — and while Microsoft’s update guide currently names Azure Linux as a product that “includes...

A heap‑based buffer overflow in the widely used giflib library — tracked as CVE‑2025‑31344 — has been publicly disclosed and fixed upstream after reports that the gif2rgb utility can be made to write past an allocated heap buffer when presented with a specially crafted GIF, creating crash and...

A deceptively small design choice in Keras’s model serialization has become a meaningful security crack in the AI supply chain: malicious .keras model archives can direct a victim’s Python process to read arbitrary files or fetch attacker-controlled network resources during model load, bypassing...

The promhttp vulnerability tracked as CVE-2022-21698 exposed a surprising — yet instructive — weakness at the intersection of observability and availability: by allowing unbounded metric label values to be created from unvalidated HTTP methods, the Prometheus Go client library (client_golang)...

The Go standard library’s math/big package contained a subtle but dangerous bug in the Rat.SetString function that could be triggered by crafted input to force unbounded memory growth and crash services that parse or accept user-controlled rational numbers. The flaw — tracked as CVE-2022-23772 —...

The llhttp parser bug tracked as CVE-2023-30589 remains an important cautionary case for WindowsForum readers: Microsoft’s Security Response Center (MSRC) has publicly mapped the vulnerable open‑source component to Azure Linux, but that mapping is an inventory attestation — not a categorical...

HAProxy operators should treat CVE-2024-45506 as an urgent availability risk: a logic flaw in the HTTP/2 zero‑copy forwarding path (the h2_send loop) can be triggered remotely to put HAProxy processes into an endless loop or crash them outright, and this weakness was observed being exploited in...

PostCSS versions prior to 8.4.31 contain a subtle but consequential parsing bug (tracked as CVE-2023-44270) that can let attacker-supplied CSS hide live rules and properties inside what appears to be a comment — a behavior that undermines linters and other tools that rely on PostCSS to safely...

A subtle change to glibc’s DNS stub resolver has had consequences that administrators and application developers should treat as more than an academic footnote: CVE-2023-4527 is a stack read overflow in getaddrinfo that can be triggered when the resolver is run in no-aaaa mode and a DNS response...

A newly disclosed vulnerability in Node.js — tracked as CVE-2024-22025 — allows an attacker who controls a URL passed into the built-in fetch() implementation to cause a Denial of Service (DoS) by driving the process into resource exhaustion through Brotli decompression. In practical terms...

Pygments’ long-running role as Python’s go-to syntax highlighter collided with a classic but under-appreciated risk in March 2021: several lexer regular expressions exhibited exponential or cubic worst‑case complexity, allowing crafted input to trigger a Regular Expression Denial of Service...

The discovery that LLVM’s ARM backend could generate code that overwrites the Link Register (LR) without saving it to the stack — tracked as CVE‑2024‑31852 — is a sober reminder that compiler toolchains can introduce subtle, hard‑to‑detect integrity failures into otherwise secure software, and...

Binutils’ objdump shipped a subtle but dangerous bug in its symbol-comparison routine that could be triggered by crafted object files to crash the tool and, in many real-world setups, take down services that rely on automated binary analysis. Background / Overview The vulnerability tracked as...

In 2014 the Python packaging tool pip was quietly found to contain a surprisingly low-tech, high-impact local denial‑of‑service (DoS) bug: pip versions 1.3 through 1.5.6 would create build directories in a predictable location under /tmp using a fixed prefix, allowing an unprivileged local user...

Microsoft’s February Patch Tuesday closed a dangerous loophole in the modern Notepad app that could let an attacker turn a simple Markdown (.md) file into a remote code execution (RCE) trap — a single click on a crafted link inside Notepad’s Markdown view could launch unverified protocols and...

Microsoft’s recent servicing changes have quietly moved the Settings > System > Storage page behind a User Account Control (UAC) elevation, and while that single line in an update note reads like a minor tweak, it changes who can see and remove system-level storage items — with real consequences...

The Department for Work and Pensions’ controlled trial of Microsoft 365 Copilot delivers a clear—if carefully qualified—signal: when a generative AI assistant is embedded into familiar Office applications and introduced with governance and training, central‑office knowledge workers report...

Clawdbot has exploded into the public eye as a practical, hands‑on AI assistant you run on your own hardware — a chat‑driven agent that can read your email, run shell commands, control a browser, and even install other AI tools — and that sudden popularity has opened a rare and urgent...

A single, deceptively small UX convenience in Microsoft’s Copilot ecosystem was chained into a practical, one‑click information‑disclosurere exploit that could siphon profile attributes, file summaries and chat memory from authenticated Copilot Personal sessions — a vulnerabilidentity tracked as...

If you’re done typing a password every time Windows 11 starts, wakes, or shows the lock screen, this practical guide walks through the safe, supported ways to remove those hurdles on a personal, trusted PC — and explains the trade‑offs you need to know before doing it. The task is not a single...