#denial-of-service

[ follow ]
#react-server-components #cybersecurity #security #nodejs #cve #http2 #madeyoureset #django #sql-injection
Web frameworks
fromDjango Project
14 hours ago

Django security releases issued: 6.0.2, 5.2.11, and 4.2.28

Upgrade Django 6.0.2, 5.2.11, or 4.2.28 immediately to mitigate multiple vulnerabilities including SQL injection, denial-of-service, timing attacks, and alias injection.
Information security
fromComputerWeekly.com
2 weeks ago

UK public sector, CNI in Russian hacktivist crosshairs | Computer Weekly

Russian-aligned hacktivist groups are conducting DoS attacks against UK organisations, prompting the NCSC to urge at-risk bodies to strengthen defences.
Information security
fromThe Hacker News
2 weeks ago

Palo Alto Fixes GlobalProtect DoS Flaw That Can Crash Firewalls Without Login

High-severity DoS vulnerability CVE-2026-0227 in GlobalProtect Gateway/Portal allows unauthenticated attackers to force PAN-OS firewalls into maintenance mode; updates required.
fromThe Hacker News
2 weeks ago

Critical Node.js Vulnerability Can Cause Server Crashes via async_hooks Stack Overflow

Node.js/V8 makes a best-effort attempt to recover from stack space exhaustion with a catchable error, which frameworks have come to rely on for service availability, A bug that only reproduces when async_hooks are used would break this attempt, causing Node.js to exit with 7 directly without throwing a catchable error when recursions in user code exhaust the stack space. This makes applications whose recursion depth is controlled by unsanitized input vulnerable to Denial-of-Service attacks.
Node JS
Information security
fromTheregister
3 weeks ago

HackerOne 'ghosted' me over $8,500 bounty: Researcher

HackerOne's Internet Bug Bounty delayed payment of an $8,500 reward after CVE-assigned Argo CD DoS flaws were fixed, leaving the researcher uncontacted for months.
#react-server-components
more#react-server-components
Information security
fromBitcoin Magazine
3 months ago

Bitcoin Knots Has Been Nothing More Than A Denial-of-Service Attack On Bitcoin

Denial-of-service attacks aim to make machines or network resources unavailable by disrupting services, and DDoS remains common, affecting systems including blockchain networks.
Information security
fromTheregister
3 months ago

Security hole slams Chromium browsers - no fix yet

A critical unpatched Blink bug enables rapid document.title updates to crash Chromium-based browsers, causing widespread denial-of-service and potential system freezes.
fromSecurityWeek
4 months ago

Apple Updates iOS and macOS to Prevent Malicious Font Attacks

Tracked as CVE-2025-43400, the security defect is described as an out-of-bounds write issue in the operating system's FontParser component that could lead to a denial-of-service (DoS) condition or memory corruption. "Processing a maliciously crafted font may lead to unexpected app termination or corrupt process memory," Apple explains. According to advisories from the Hong Kong CERT and Akaoma Cybersecurity, the vulnerability can be exploited remotely, without privileges, although user interaction is required.
Apple
#http2
more#http2
fromTechzine Global
7 months ago

Citrix warns of vulnerability in NetScaler

Citrix warns of a critical vulnerability in NetScaler devices (CVE-2025-6543) leading to denial-of-service attacks, urging immediate updates to mitigate risks.
Information security
Node JS
fromThe Cyber Express
8 months ago

Multer Vulnerabilities Expose Node.js Apps To DoS Attacks

Two critical vulnerabilities in Multer could crash Node.js applications through malformed uploads, emphasizing the need for immediate updates.
[ Load more ]