Crow's Nest - 2026-05-18

A roundup of 44 items curated from across the security community.

News

• Bleeding Llama: unauthenticated memory leak in Ollama (CVE-2026-7482).

Cyera Research uncovers a critical pre-auth memory disclosure in Ollama. Self-hosted LLM gateways leak adjacent buffer contents to anyone who can hit the API.

Techniques and Write-ups

• MariaDB CVE-2026-32710 deep dive: character-constrained overflow to RCE by kmkz.

Tim Becker walks through the heap-grooming primitive Xint used to turn a character-constrained heap overflow in JSON_SCHEMA_VALID into full RCE. ZeroDay Cloud’s deep dive on the bug behind GHSA-4rj5-2227-9wgc.

• EasterBunny: 142-page LAB52 report on APT29 espionage by Lefteris Panos.

LAB52 drops a 142-page open-access report on EasterBunny, an advanced espionage toolset attributed to APT29. Full TTPs, samples, and IOCs in one document.

• Hacking Microsoft Copilots: CVE-2026-24299 (Copirate 365) by Max.

Johann Rehberger’s DEF CON Singapore talk writeup on CVE-2026-24299. End-to-end exploitation chain against Microsoft Copilot, full slides and PoCs included.

• Recovering AES-128 from a Bluetooth chip via 10-meter RF eavesdrop by Rémi GASCOU (Podalirius).

Crypto-engine switching noise couples into the chip’s 2.4 GHz RF chain and leaks out as radio. Owen Brake’s writeup shows the AES-128 key recovered from 10 meters away with nothing but a listener.

• Chinese OPPO phones crack and emulate MIFARE Classic cards in seconds by Sam Curry.

Iceman flags consumer-grade Chinese smartphones that read, crack, and emulate MIFARE Classic cards out of the box. Hotel keys, access control, transit cards: pocket cloning, no extra hardware.

• CVE-2026-7865: command injection in Crestron touch panels by spaceraccoon | Eugene Lim.

spaceraccoonsec lands a CVE on Crestron’s enterprise touch panels for unauthenticated command injection. Firmware patch shipped; expect a long tail of unpatched conference-room units.

• Salesforce Experience Site pentesting: how to be an apex predator.

Reco.ai catalogs the novel Salesforce Experience Site attack surface: Apex injection, guest-user privilege confusion, and SOQL primitives that turn a misconfigured site into wide reach.

• Five-bug chain to arbitrary APK install on Samsung Galaxy S25 by ϻг_ϻε.

Bugscale chains five separate bugs in Samsung’s cloud gaming component to install arbitrary APKs on the Galaxy S25 from an app with no install permissions.

• Grok prompt-injected into draining $175K from a crypto wallet by Vincent Yiu.

An attacker fed Grok a prompt that walked the agent into authorizing a 3 billion DRB transfer (about $175,000) on Base. Elegant payload, expensive lesson on AI agents wired to crypto rails.

Tools and Exploits

• Zellic audit of rust-coreutils: 113 issues, 44 CVEs by Solar Designer.

Zellic’s security audit of uutils coreutils lands 113 findings across two rounds (7 critical, 11 high, 29 medium, 26 low) and 44 CVEs. The very codebase Canonical wants shipped by default.