Allgemein – Seite 69

[UPDATE] [hoch] TYPO3 Core: Mehrere Schwachstellen

Ein entfernter Angreifer kann mehrere Schwachstellen in TYPO3 Core ausnutzen, um Informationen offenzulegen und seine Rechte zu erweitern.

Chrome: Erster Fix unzureichend, neues Notfall-Update veröffentlicht

Nachdem Google bereits am Freitag ein Notfall-Update für Chrome veröffentlicht hat, legt der Hersteller in der Nacht zum Samstag nach.

CVE-2026-27141 Sending certain HTTP/2 frames can cause a server to panic in golang.org/x/net

Information published.

CVE-2026-27171 zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition.

Information published.

CVE-2026-3381 Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib

Information published.

CVE-2026-31802 node-tar Symlink Path Traversal via Drive-Relative Linkpath

Information published.

CVE-2025-58160 Tracing logging user input may result in poisoning logs with ANSI escape sequences

Information published.

Chromium: CVE-2026-3910 Inappropriate implementation in V8

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2021) for more information. Google is aware that an exploit for CVE-2026-3910 exists in the wild.

Chromium: CVE-2026-3916 Out of bounds read in Web Speech

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2021) for more information.

Chromium: CVE-2026-3915 Heap buffer overflow in WebML

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2021) for more information.

Kategorie: Allgemein

[UPDATE] [hoch] TYPO3 Core: Mehrere Schwachstellen

Chrome: Erster Fix unzureichend, neues Notfall-Update veröffentlicht

CVE-2026-27141 Sending certain HTTP/2 frames can cause a server to panic in golang.org/x/net

CVE-2026-27171 zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition.

CVE-2026-3381 Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib

CVE-2026-31802 node-tar Symlink Path Traversal via Drive-Relative Linkpath

CVE-2025-58160 Tracing logging user input may result in poisoning logs with ANSI escape sequences

Chromium: CVE-2026-3910 Inappropriate implementation in V8

Chromium: CVE-2026-3916 Out of bounds read in Web Speech

Chromium: CVE-2026-3915 Heap buffer overflow in WebML

Suchen