Raphael

@0x3e4@cyberplace.social
48 Followers
60 Following
307 Posts
IT generalist (IT infrastructure manager, system & security engineer) for everything; #sysadmin #infosec #cybersec #infrastructure - Vienna, Austria
Nohubhttps://nohub.lol
Githubhttps://github.com/0x3e4
Abuse.chhttps://bazaar.abuse.ch/user/6708/
Lemmyhttps://feddit.org/u/0x3e4
Raphael1d ago
Taggart2d ago

What's going on here? The matplotlib maintainer this story is about correctly notes that all the quotes from his post in the article are made up.

UPDATE: Link was pulled; see below.

https://arstechnica.com/ai/2026/02/after-a-routine-code-rejection-an-ai-agent-published-a-hit-piece-on-someone-by-name

Raphael2d ago

πŸ” CVE-2026-26269

πŸ“Š CVSS: 5.4 Β· Medium
πŸ“… 02/13/2026, 08:17 PM
πŸ›‘οΈ CWE: CWE-121
πŸ“¦ Affected: #vim vim (< 9.1.2148)
πŸ“š https://github.com/vim/vim/security/advisories/GHSA-9w5c-hwr9-hc68 https://github.com/vim/vim/commit/c5f312aad8e4179e437f81ad39a860cd0ef11970

πŸ”— https://hecate.pw/vulnerability/CVE-2026-26269

#cve #vulnerability #hecate

Netbeans `specialKeys` Stack Buffer Overflow

NetBeans specialKeys Stack Buffer Overflow with Vim <9.1.2148 ============================================================= Date: 13.02.2026 Severity: Medium CVE: CVE-2026-26269 CWE: Stack-bas...

GitHub
Raphael2d ago

πŸ” CVE-2026-21643

πŸ“Š CVSS: 9.1 Β· Critical
πŸ“… 02/06/2026, 08:24 AM
πŸ›‘οΈ CWE: CWE-89
πŸ“¦ Affected: Fortinet FortiClientEMS (7.4.4)
πŸ“š https://fortiguard.fortinet.com/psirt/FG-IR-25-1142

πŸ”— https://hecate.pw/vulnerability/CVE-2026-21643

#cve #vulnerability #hecate

PSIRT | FortiGuard Labs

None

FortiGuard Labs
Raphael2d ago

πŸ” CVE-2026-1868

πŸ“Š CVSS: 9.9 Β· Critical
πŸ“… 02/09/2026, 07:16 AM
πŸ›‘οΈ CWE: CWE-1336
πŸ“¦ Affected: #GitLab GitLab AI Gateway (>= 18.1.6, < 18.6.2, >= 18.7.0, < 18.7.1, >= 18.8.0, < 18.8.1)

πŸ“š References: https://about.gitlab.com/releases/2026/02/06/patch-release-gitlab-ai-gateway-18-8-1-released/

πŸ”— https://hecate.pw/vulnerability/CVE-2026-1868

#cve #vulnerability #hecate

GitLab AI Gateway Critical Patch Release: 18.6.2, 18.7.1, and 18.8.1

Learn more about GitLab AI Gateway Release: 18.6.2, 18.7.1, and 18.8.1 for GitLab Duo Self-hosted

GitLab
Show threadRaphael2d ago

πŸ” CVE-2026-25227
CVE-2026-25227

πŸ“Š CVSS Score: 9.1
⚠️ Severity: Critical
πŸ“… Published: 02/12/2026, 08:16 PM
🏷️ Aliases: CVE-2026-25227
πŸ›‘οΈ CWE: CWE-94
πŸ”— CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H (security-advisories@github.com)
πŸ“š References: https://github.com/goauthentik/authentik/commit/c691afaef164cf73c10a26a944ef2f11dbb1ac80 https://github.com/goauthentik/authentik/releases/tag/version/2025.10.4

πŸ”— https://hecate.pw/vulnerability/CVE-2026-25227

#cve #vulnerability #hecate

security: CVE-2026-25227 (#20230) Β· goauthentik/authentik@c691afa

Co-authored-by: authentik-automation[bot] <135050075+authentik-automation[bot]@users.noreply.github.com>

GitHub
Show threadRaphael2d ago

πŸ” CVE-2026-25922
CVE-2026-25922

πŸ“Š CVSS Score: 8.8
⚠️ Severity: High
πŸ“… Published: 02/12/2026, 08:16 PM
🏷️ Aliases: CVE-2026-25922
πŸ›‘οΈ CWE: CWE-287, CWE-347
πŸ”— CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (security-advisories@github.com)
πŸ“š References: https://github.com/goauthentik/authentik/releases/tag/version/2025.10.4 https://github.com/goauthentik/authentik/releases/tag/version/2025.12.4

πŸ”— https://hecate.pw/vulnerability/CVE-2026-25922

#cve #vulnerability #hecate

Show threadRaphael2d ago
πŸ” CVE-2026-25748
CVE-2026-25748β€¨β€¨πŸ“Š CVSS Score: 8.6β€¨βš οΈ Severity: Highβ€¨πŸ“… Published: 02/12/2026, 08:16 PMβ€¨πŸ·οΈ Aliases: CVE-2026-25748β€¨πŸ›‘οΈ CWE: CWE-287β€¨πŸ”— CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N (security-advisories@github.com)β€¨πŸ“š References: https://github.com/goauthentik/authentik/releases/tag/version/2025.10.4 https://github.com/goauthentik/authentik/releases/tag/version/2025.12.4β€¨β€¨πŸ”— https://hecate.pw/vulnerability/CVE-2026-25748

#cve #vulnerability #hecate
Raphael2d ago

Be sure to patch your #Authentik instances.. three CVEs were patched in the current release

Affected versions:
>= 2021.3.1, < 2025.8.6>= 2025.10.0-rc1, < 2025.10.4>= 2025.10.0-rc1, < 2025.12.4

Raphael3d ago

few new #postgresql vulns out there today

πŸ” CVE-2026-2004
CVE-2026-2004

Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database.

πŸ“Š CVSS Score: 8.8
⚠️ Severity: High
πŸ“… Published: 02/12/2026, 02:16 PM
🏷️ Aliases: CVE-2026-2004
πŸ›‘οΈ CWE: CWE-1287
πŸ“š References: https://www.postgresql.org/support/security/CVE-2026-2004/

πŸ”— https://hecate.pw/vulnerability/CVE-2026-2004

#cve #vulnerability #hecate

PostgreSQL: CVE-2026-2004: PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code

Raphael4d ago

its CEO Dario Amodei said at Davos that AI progress is going too fast and called for regulation to force industry leaders to slow down.
Other AI safety researchers have left leading firms, citing concerns about catastrophic risks. Two key members of OpenAI’s β€œSuperalignment” team, tasked with steering AI development, quit in 2024, saying the company emphasized financial gain over minimizing the dangers of building β€œAI systems much smarter than us.”

https://www.semafor.com/article/02/11/2026/anthropic-safety-researcher-quits-warning-world-is-in-peril

Anthropic safety researcher quits, warning β€˜world is in peril’

Other AI safety researchers have also left leading firms, citing concerns about potentially catastrophic risks.