net: add proper RCU protection to /proc/net/ptype

...

Microsoft Bing Images Remote Code Execution Vulnerability

Improper neutralization of special elements used in an os command 'os command injection' in Microsoft Bing Images allows an unauthorized attacker to execute code over a network...

Azure DevOps: msazure Elevation of Privilege Vulnerability

Insufficiently protected credentials in Azure DevOps allows an unauthorized attacker to elevate privileges over a network...

Microsoft Copilot Information Disclosure Vulnerability

Improper neutralization of special elements used in a command 'command injection' in Microsoft Copilot allows an unauthorized attacker to disclose information over a network...

M365 Copilot Information Disclosure Vulnerability

Improper neutralization of special elements used in a command 'command injection' in M365 Copilot allows an unauthorized attacker to disclose information over a network...

Microsoft Bing Tampering Vulnerability

Server-side request forgery ssrf in Microsoft Bing allows an unauthorized attacker to perform tampering over a network...

Microsoft Bing Images Remote Code Execution Vulnerability

Improper neutralization of special elements used in a command 'command injection' in Microsoft Bing Images allows an unauthorized attacker to execute code over a network...

Microsoft Exchange Elevation of Privilege Vulnerability

Server-side request forgery ssrf in Microsoft Exchange allows an authorized attacker to elevate privileges over a network...

Microsoft Purview Elevation of Privilege Vulnerability

Server-side request forgery ssrf in Microsoft Purview allows an unauthorized attacker to elevate privileges over a network...

Azure Data Factory Information Disclosure Vulnerability

Exposure of sensitive information to an unauthorized actor in Azure Data Factory allows an unauthorized attacker to disclose information over a network...

Azure Cloud Shell Elevation of Privilege Vulnerability

Server-side request forgery ssrf in Azure Cloud Shell allows an unauthorized attacker to elevate privileges over a network...

Microsoft Purview Elevation of Privilege Vulnerability

Server-side request forgery ssrf in Microsoft Purview allows an unauthorized attacker to elevate privileges over a network...

Stack overflow parsing XML with deeply nested DTD content models

...

pyOpenSSL DTLS cookie callback buffer overflow

...

pyOpenSSL allows TLS connection bypass via unhandled callback exception in set_tlsext_servername_callback

...

fs: ntfs3: fix infinite loop in attr_load_runs_range on inconsistent metadata

...

RDMA/umad: Reject negative data_len in ib_umad_write

...

nvme: fix memory allocation in nvme_pr_read_keys()

...

wifi: mac80211: bounds-check link_id in ieee80211_ml_reconfiguration

...

fs: ntfs3: fix infinite loop triggered by zero-sized ATTR_LIST

...

fs: ntfs3: check return value of indx_find to avoid infinite loop

...

perf/core: Fix refcount bug and potential UAF in perf_mmap

...

net/sched: act_gate: snapshot parameters with RCU on replace

...

RDMA/siw: Fix potential NULL pointer dereference in header processing

...

f2fs: fix to avoid mapping wrong physical block for swapfile

...

audit: add fchmodat2() to change attributes class

...

audit: add missing syscalls to read class

...

OpenSSL TLS 1.3 server may choose unexpected key agreement group

...

Libarchive: infinite loop denial of service in rar5 decompression via archive_read_data() in libarchive

...

Pre-auth SSH DoS via unbounded zlib inflate

...

SFTP root escape via component-agnostic prefix check in ssh_sftpd

...

Request smuggling via first-wins Content-Length parsing in inets httpd

...

libexif through 0.6.25 has a flaw in decoding MakerNotes. If the exif_mnote_data_get_value function gets passed in a 0 size, the passed in-buffer would be overwritten due to an integer underflow.

...

libexpat before 2.7.5 allows an infinite loop while parsing DTD content.

...

libexpat before 2.7.5 allows a NULL pointer dereference in the function setContext on retry after an earlier ouf-of-memory condition.

...

libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content.

...

Chromium: CVE-2026-3909 Out of bounds write in Skia

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2026-3909 exists in the wild...

NFA regex engine NULL pointer dereference affects Vim < 9.2.0137

...

GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF loclists data. A logic flaw in the DWARF parsing code can cause readelf to repeatedly print the same table output without making forward progress, resulting in an unbounded output loop that never terminates unless externally interrupted. A local attacker can trigger this behavior by supplying a malicious input file, causing excessive CPU and I/O usage and preventing readelf from completing its analysis.

...

Chromium: CVE-2026-3910 Inappropriate implementation in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2026-3910 exists in the wild...

Chromium: CVE-2026-3942 Incorrect security UI in PictureInPicture

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3941 Insufficient policy enforcement in DevTools

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3940 Insufficient policy enforcement in DevTools

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3939 Use after free in WebView

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3938 Insufficient policy enforcement in Clipboard

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3937 Incorrect security UI in Downloads

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3936 Use after free in WebView

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3935 Incorrect security UI in WebAppInstalls

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3934 Insufficient policy enforcement in ChromeDriver

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3932 Insufficient policy enforcement in PDF

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...