The Hacker News

NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

A newly disclosed security flaw impacting NGINX Plus and NGINX Open has come under active exploitation in the wild, days ...

18-year-old NGINX vulnerability allows DoS, potential RCE

An 18-year-old flaw in the NGINX open-source web server, discovered using an autonomous scanning system, can be exploited for ...
Memeburn

Dirty Frag Linux Vulnerability Detected Hands Hackers Instant Root Access

Dirty Frag is a new Linux kernel vulnerability that hands attackers root on every major distro. We break down what's affected ...

F5 patches 18-year-old AI-found 'Rift' vulnerability in NGINX web server

Researchers at code vulnerability analysis firm Depthfirst analysed the source code for NGINX using their artificial ...
Techzine Europe

Linux vulnerability ‘Dirty Frag’ affects nearly all distributions

A new critical Linux vulnerability named Dirty Frag is causing concern among system administrators and Linux distributors.

'Dirty Frag' allows root on all major Linux distros - with no patch or fix available yet

A researcher shared their findings with Linux distro maintainers, but leaked before a patch was built.
cybernews

NGINX is critically vulnerable: hackers can crash servers and run remote code with no authentication

A critical NGINX vulnerability, undiscovered for 18 years, allows hackers to crash servers with ease and even take full control without authentication in some common configurations. Emergency patches ...
GitHub

cis_alma_linux_9.yml

description: "This document provides prescriptive guidance for establishing a secure configuration posture for Alma Linux 9 systems running on x86 and x64 platforms. This document was tested against ...
OSTechNix

Linux Kernel 7.0.8 is Released to Fix ssh-keysign-pwn Root Exploit

Linux Kernel 7.0.8 is released with patches to fix the ssh-keysign-pwn (CVE-2026-46333) root exploit flaw. Update your Linux ...