FFmpeg fixes PixelSmash flaw in widely used video decoder

A newly disclosed FFmpeg flaw dubbed 'PixelSmash' could be exploited for remote code execution on Jellyfin servers under ...
The Hacker News

LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code Execution

Three patched LangGraph flaws could let attackers chain SQL injection and unsafe deserialization for RCE in self-hosted ...
マイナビニュース

Gitに2つの緊急の脆弱性、ただちに確認と更新を

The Hacker Newsは1月18日(米国時間)、「Git Users Urged to Update Software to Prevent Remote Code Execution Attacks」において、Gitに存在する緊急(Critical)の脆弱性について伝えた。Gitについて、リモートコード実行(RCE: Remote Code ...

Malicious Hugging Face Models Could Trigger Remote Code Execution

A flaw in Hugging Face Transformers could allow malicious AI models to execute code, exposing credentials and highlighting AI supply chain risks.