73 matches found
May 12, 2026—Hotpatch KB5087424 (OS Build 20348.5074)
None None...
May 12, 2026—KB5087420 (OS Build 22631.7079)
May 12, 2026—KB5087420 OS Build 22631.7079 This cumulative update for Windows 11, version 23H2 KB5087420, includes the latest security fixes and improvements, along with non-security updates from last month’s optional preview release. To learn more about differences between security updates,...
April 14, 2026—KB5083769 (OS Builds 26200.8246 and 26100.8246)
April 14, 2026—KB5083769 OS Builds 26200.8246 and 26100.8246 This cumulative update for Windows 11, version 25H2 and 24H2 KB5083769, includes the latest security fixes and improvements, along with non-security updates from last month’s optional preview release. To learn more about differences...
April 14, 2026—KB5082126 (Monthly Rollup)
April 14, 2026—KB5082126 Monthly Rollup Important The installation of this Extended Security Update ESU might fail when you try to install it on an Azure Arc-enabled device that is running Windows Server 2012 R2. For a successful installation, please make sure all Subset of endpoints for ESU only...
KB5082806: Cumulative security update for Internet Explorer: April 14, 2026
KB5082806: Cumulative security update for Internet Explorer: April 14, 2026 Important Certain versions of Microsoft Internet Explorer have reached the end of support. Note that some versions of Internet Explorer may be supported past the latest OS end date when Extended Security Updates ESUs are...
April 14, 2026—KB5082142 (OS Build 20348.5020)
April 14, 2026—KB5082142 OS Build 20348.5020 This cumulative update for Windows Server 2022 KB5082142, includes the latest security fixes and improvements, along with non-security updates from last month’s optional preview release. To learn more about differences between security updates, optiona...
March 26, 2026—KB5079391 (OS Builds 26200.8116 and 26100.8116) Preview
March 26, 2026—KB5079391 OS Builds 26200.8116 and 26100.8116 Preview This update is no longer being offered to new devices due to an installation issue identified after release. The issue has been addressed in the March 31, 2026—KB5086672 OS Builds 26200.8117 and 26100.8117 Out-of-band update tha...
March 10, 2026—KB5078938 (OS Build 14393.8957)
March 10, 2026—KB5078938 OS Build 14393.8957 Windows Secure Boot certificate expirationImportant: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. Microsoft has been updating these certificates on consumer and non-managed business devices for the past...
March 10, 2026—KB5078775 (Monthly Rollup)
March 10, 2026—KB5078775 Monthly Rollup Important The installation of this Extended Security Update ESU might fail when you try to install it on an Azure Arc-enabled device that is running Windows Server 2012. For a successful installation, please make sure all Subset of endpoints for ESU only ar...
CLSA-2026-1772624338 grafana-pcp: Fix of CVE-2025-68121
rebuild with newer golang version 1.22.9-1.el92.tuxcare.els6 to fix the following CVE's - CVE-2025-68121: fix TLS session resumption bypass by preventing shared auto-rotated ticket keys in Config and validating full certificate chain expiry...
CLSA-2026-1772464786 grafana: Fix of CVE-2025-68121
rebuild with newer golang version 1.22.9-1.el92.tuxcare.els6 to fix the following CVE's - CVE-2025-68121: fix TLS session resumption bypass by preventing shared auto-rotated ticket keys in Config and validating full certificate chain expiry...
CLSA-2026-1772456640 podman: Fix of 4 CVEs
rebuild with newer golang version 1.22.9-1.el92.tuxcare.els6 to fix the following CVE's - CVE-2025-68121: fix TLS session resumption bypass by preventing shared auto-rotated ticket keys in Config and validating full certificate chain expiry - CVE-2025-61726: limit parsed URL query parameters to...
CLSA-2026-1772123920 golang: Fix of CVE-2025-68121
CVE-2025-68121: fix TLS session resumption bypass by preventing shared auto-rotated ticket keys in Config and validating full certificate chain expiry...
SUSE CVE-2026-24122
Cosign provides code signing and transparency for containers and binaries. In versions 3.0.4 and below, an issuing certificate with a validity that expires before the leaf certificate will be considered valid during verification even if the provided timestamp would mean the issuing certificate...
CVE-2026-24122
A flaw was found in sigstore/cosign. This vulnerability affects private deployments using customized Public Key Infrastructures PKIs, where it can lead to incorrect validation of artifact signatures. Cosign may mistakenly accept an issuing certificate as valid even if its expiration date precedes...
DEBIAN-CVE-2026-24122
Cosign provides code signing and transparency for containers and binaries. In versions 3.0.4 and below, an issuing certificate with a validity that expires before the leaf certificate will be considered valid during verification even if the provided timestamp would mean the issuing certificate...
UBUNTU-CVE-2026-24122
Cosign provides code signing and transparency for containers and binaries. In versions 3.0.4 and below, an issuing certificate with a validity that expires before the leaf certificate will be considered valid during verification even if the provided timestamp would mean the issuing certificate...
CVE-2026-24122
Cosign provides code signing and transparency for containers and binaries. In versions 3.0.4 and below, an issuing certificate with a validity that expires before the leaf certificate will be considered valid during verification even if the provided timestamp would mean the issuing certificate...
CVE-2026-24122
Cosign
CVE-2026-24122 Cosign Certificate Chain Expiry Validation Issue Allows Issuing Certificate Expiry to Be Overlooked
Cosign provides code signing and transparency for containers and binaries. In versions 3.0.4 and below, an issuing certificate with a validity that expires before the leaf certificate will be considered valid during verification even if the provided timestamp would mean the issuing certificate...