ByteBrief

Best read upright.

We're a portrait publication through and through. Turn your phone back and your briefing picks up right where you left it.

(We tried widescreen once. It wasn't us.)

ByteBrief

SecurityWeLiveSecurity6 months ago

Revisiting CVE-2025-50165: A critical flaw in Windows Imaging Component

1 min read

Two medium-severity denial-of-service vulnerabilities, CVE-2025-59471 and CVE-2025-59472, were discovered in self-hosted Next.js applications. Both can crash servers via memory exhaustion. CVE-2025-59471 affects the Image Optimizer with remotePatterns enabled. CVE-2025-59472 affects Partial Pre-Rendering in minimal mode. Vercel-hosted apps are unaffected.

Level

Hype check

Tap to vote and see what everyone thinks.

In this storyMicrosoft

#next.js

Best read upright.

Revisiting CVE-2025-50165: A critical flaw in Windows Imaging Component

More to chew on!

More to chew on!