#Patched

Vercel has issued mitigations for a high-severity vulnerability in React Server Components can lead to Denial of Service

WhatsApp Just Fixed Two Security Bugs—Here's What They Were Meta published a security advisory on May 1 disclosing two vulnerabilities in WhatsApp that were caught through its bug bounty program …

From Dev.to - security: We Scanned AI-Built Apps and Found Holes That Would End Companies. Here's What We Found.

I have several TPU tubes that I have patched. These were pinholes, but I hesitate to rely on these as spare tubes. Anybody have experience using patched TPU tubes?

These guys were able to turn a simple `git push` command into a way to execute code on github.com's servers directly, they were able to get access other tenant's repos, including private ones. Pretty crazy stuff. The vulnerability was already patched.…

GitHub patched a critical RCE vulnerability (CVE-2026-3854) in its internal git infrastructure that allowed authenticated users to compromise backend servers and access millions of repositories.

Spring Boot reports three vulnerabilities, including a critical authentication bypass (CVE-2026-40976) and flaws allowing session hijacking or remote code execution via timing attacks.

Summary CrowdStrike patched a critical unauthenticated path traversal vulnerability (CVE-2026-40050) in LogScale that allows remote attackers to read arbitrary files from self-hosted server filesystems.…