Tag
CVE-2026-42530 discloses a use-after-free vulnerability in nginx's HTTP/3 QUIC module.
A detailed walkthrough of the Linux kernel's AF_UNIX garbage collector rewrite, explaining the background, the new graph-based model, and a Use-After-Free bug.
A single faulty character in the Linux kernel introduced a use-after-free vulnerability (CVE-2026-53111) allowing unprivileged users to escalate privileges to root on Debian and Ubuntu systems; the bug has been fixed and backported.
A detailed analysis of a use-after-free vulnerability in the Linux kernel's epoll subsystem, fixed by switching to RCU, and the author's failed attempts at exploiting it on a modern device.