fweno.onefour.com.br

Current Conditions
São Paulo
nublado

16 ℃
96%
Temperatura
Umidade
Fonte: OpenWeatherMap. - 06:30:02
  1. [USD] USD 59,217.66
  1. [BRL] BRL 306,398.11 [USD] USD 59,217.66 [GBP] GBP 44,741.19 [EUR] EUR 51,981.74
    Price index provided by blockchain.info.
  2. After Bitcoin Core 0.14.0 and before Bitcoin Core 29.0, validating a specially-crafted block may cause the node to access previously freed memory.
    During validation, necessary data required for checking inputs for each transaction is pre-calculated and cached. For specially crafted invalid blocks, it was possible for this data to be destroyed while it was still being accessed by a background validation thread. An attacker capable of mining a block with sufficient proof-of-work could have exploited this to crash victim nodes. Because of the nature of use-after-free bugs, it is possible that the crash could have been used for remote code execution, though constraints on the input (block) data make this unlikely.
    This issue is considered High severity.

    Details

    By default, script validation for new blocks is dispatched to background threads via a vector of CScriptCheck functors. Each CScriptCheck holds a pointer to a PrecomputedTransactionData object which stores some data needed by each input in the transaction. Because it stores a pointer and not the data itself, care must be taken to ensure that the PrecomputedTransactionData outlives the CScriptCheck.
    The script checks lifetime is enforced by an RAII class, CCheckQueueControl. However, the control is intantiated before the precomputed transaction data. Because local objects in C++ are destructed in reverse order of construction, this means the vector of PrecomputedTransactionData is destroyed before the CCheckQueueControl.
    This is not an issue when the block is valid, as CCheckQueueControl::Wait() will be called before the function returns and the PrecomputedTransactionData gets destroyed. However, in case of an early return (when a separate check fails) a background script thread may read the precomputed transaction data after it was destroyed. An attacker could exploit this to crash victim nodes at the expense of a valid PoW at tip.

    Attribution

    Cory Fields (MIT DCI) discovered this vulnerability and responsibly disclosed it in a detailed report containing a proof of concept for reproduction and a proposed mitigation.

    Timeline

    • 2024-11-02 Cory Fields privately reports the bug
    • 2024-11-06 Pieter Wuille pushes a covert fix to already open PR #31112 which works around the issue by removing the early returns
    • 2024-12-03 PR #31112 is merged
    • 2025-04-12 Bitcoin Core version 29.0 is released with a fix
    • 2026-04-19 The last vulnerable Bitcoin Core version (28.x) goes end of life
    • 2026-05-05 Public disclosure.

dog - 06:52:58 up 283 days, 15:24, 6 users, load average: 0.01, 0.02, 0.00

Google News

[29/06/2026 16:39] Greve continua: sindicato convoca assembleia de rodoviários na porta do TRT após audiência desta terça-feira - O Globo

[29/06/2026 07:17] Flávio Bolsonaro encosta em Lula em disputa de segundo turno, indica pesquisa Nexus/BTG - CartaCapital

[29/06/2026 14:05] Lula anuncia aporte de US$ 100 milhões para fundo do Mercosul - Brasil 247

[29/06/2026 06:02] Alcolumbre coloca pauta-bomba de R$ 30 bi para votar nesta semana - Poder360

[29/06/2026 21:34] Saiba como pode ficar a nova lei para MEIs - Poder360

[29/06/2026 19:18] Boi Caprichoso é campeão do Festival de Parintins 2026 - CNN Brasil

[29/06/2026 10:55] Homem morre ao cair de pedra durante trilha em Maricá - O Globo

[29/06/2026 15:00] Primeira forte frente fria de julho já tem data e trará dia mais frio do ano - ACidade ON

[29/06/2026 16:30] Tenente da Rota baleado tem evolução positiva, mas segue na UTI - CNN Brasil

[29/06/2026 23:18] Ligação do PT ao PCC foi denunciada por Marcos Valério, operador do Mensalão - Diário do Poder

NVD Feed

[CVE-2026-3408] [Modified: 17-06-2026] [Analyzed] [V3.1 S4.3:MEDIUM] A vulnerability was identified in Open Babel up to 3.1.1. This impacts the function OBAtom::GetExplicitValence of the file isrc/atom.cpp of the component CDXML File Handler. Such manipulation leads to null pointer dereference. The attack can be launched remotely. The exploit is publicly available and might be used. The name of the patch is e23a224b8fd9d7c2a7cde9ef4ec6afb4c05aa08a. It is best practice to apply a patch to resolve this issue.

[CVE-2026-3410] [Modified: 17-06-2026] [Analyzed] [V3.1 S7.3:HIGH] A weakness has been identified in itsourcecode Society Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/check_studid.php. Executing a manipulation of the argument student_id can lead to sql injection. The attack may be launched remotely. The exploit has been made available to the public and could be used for attacks.

[CVE-2026-3411] [Modified: 17-06-2026] [Analyzed] [V3.1 S7.3:HIGH] A security vulnerability has been detected in itsourcecode University Management System 1.0. Affected by this issue is some unknown functionality of the file /admin_single_student_update.php. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used.

[CVE-2026-3412] [Modified: 17-06-2026] [Analyzed] [V3.1 S4.3:MEDIUM] A vulnerability was detected in itsourcecode University Management System 1.0. This affects an unknown part of the file /att_single_view.php. The manipulation of the argument dt results in cross site scripting. The attack can be executed remotely. The exploit is now public and may be used.

[CVE-2025-15597] [Modified: 17-06-2026] [Analyzed] [V3.1 S6.3:MEDIUM] A vulnerability has been found in Dataease SQLBot up to 1.4.0. This affects an unknown function of the file backend/apps/system/api/assistant.py of the component API Endpoint. Such manipulation leads to improper access controls. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 1.5.0 mitigates this issue. The name of the patch is d640ac31d1ce64ce90e06cf7081163915c9fc28c. Upgrading the affected component is recommended. Multiple endpoints are affected. The vendor was contacted early about this disclosure.

[CVE-2026-2999] [Modified: 17-06-2026] [Analyzed] [V3.1 S9.8:CRITICAL] IDExpert Windows Logon Agent developed by Changing has a Remote Code Execution vulnerability, allowing unauthenticated remote attackers to force the system to download arbitrary executable files from a remote source and execute them.

[CVE-2026-3000] [Modified: 17-06-2026] [Analyzed] [V3.1 S9.8:CRITICAL] IDExpert Windows Logon Agent developed by Changing has a Remote Code Execution vulnerability, allowing unauthenticated remote attackers to force the system to download arbitrary DLL files from a remote source and execute them.

[CVE-2026-3413] [Modified: 17-06-2026] [Analyzed] [V3.1 S7.3:HIGH] A flaw has been found in itsourcecode University Management System 1.0. This vulnerability affects unknown code of the file /admin_single_student.php. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may be used.

[CVE-2026-3422] [Modified: 17-06-2026] [Analyzed] [V3.1 S9.8:CRITICAL] U-Office Force developed by e-Excellence has a Insecure Deserialization vulnerability, allowing unauthenticated remote attackers to execute arbitrary code on the server by sending maliciously crafted serialized content.

[CVE-2026-20416] [Modified: 17-06-2026] [Analyzed] [V3.1 S7.2:HIGH] In pcie, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10315038 / ALPS10340155; Issue ID: MSV-5155.

[CVE-2026-20424] [Modified: 17-06-2026] [Analyzed] [V3.1 S4.4:MEDIUM] In display, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5540.

[CVE-2026-20425] [Modified: 17-06-2026] [Analyzed] [V3.1 S6.7:MEDIUM] In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5539.

[CVE-2026-20426] [Modified: 17-06-2026] [Analyzed] [V3.1 S6.7:MEDIUM] In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5538.

[CVE-2026-20427] [Modified: 17-06-2026] [Analyzed] [V3.1 S6.7:MEDIUM] In display, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5537.

[CVE-2026-20428] [Modified: 17-06-2026] [Analyzed] [V3.1 S6.7:MEDIUM] In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5536.

[CVE-2026-20429] [Modified: 17-06-2026] [Analyzed] [V3.1 S4.4:MEDIUM] In display, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5535.

[CVE-2026-20430] [Modified: 17-06-2026] [Analyzed] [V3.1 S8.8:HIGH] In wlan AP FW, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00467553; Issue ID: MSV-5151.

[CVE-2026-20434] [Modified: 17-06-2026] [Analyzed] [V3.1 S7.5:HIGH] In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY00782946; Issue ID: MSV-4135.

[CVE-2026-20435] [Modified: 17-06-2026] [Analyzed] [V3.1 S4.6:MEDIUM] In preloader, there is a possible read of device unique identifiers due to a logic error. This could lead to local information disclosure, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS10607099; Issue ID: MSV-6118.

[CVE-2026-20436] [Modified: 17-06-2026] [Analyzed] [V3.1 S6.7:MEDIUM] In wlan STA driver, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00473802; Issue ID: MSV-5970.

 
Amazon AWS httpd php.net Lets Encrypt Bootstrap