Microsoft SharePoint Server Spoofing Vulnerability

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network...

Windows Shell Link Processing Spoofing Vulnerability

Exposure of sensitive information to an unauthorized actor in Windows Shell Link Processing allows an unauthorized attacker to perform spoofing over a network...

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Improper validation of specified type of input in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

Windows NTFS Elevation of Privilege Vulnerability

Out-of-bounds read in Windows NTFS allows an authorized attacker to elevate privileges locally...

Windows Kerberos Security Feature Bypass Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Kerberos allows an unauthorized attacker to bypass a security feature over a network...

Windows Device Association Service Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Device Association Service allows an authorized attacker to elevate privileges locally...

Windows Device Association Service Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Device Association Service allows an authorized attacker to elevate privileges locally...

Windows SMB Server Elevation of Privilege Vulnerability

Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally...

Multiple UNC Provider Kernel Driver Elevation of Privilege Vulnerability

Heap-based buffer overflow in Windows File Server allows an authorized attacker to elevate privileges locally...

RPC Runtime Library Remote Code Execution Vulnerability

Use after free in RPC Runtime allows an authorized attacker to execute code over a network...

Broadcast DVR Elevation of Privilege Vulnerability

Use after free in Broadcast DVR allows an authorized attacker to elevate privileges locally...

.NET Denial of Service Vulnerability

Out-of-bounds read in .NET allows an unauthorized attacker to deny service over a network...

CoreDNS Loop Detection Denial of Service Vulnerability

...

CoreDNS ACL Bypass

...

MariaDB Server Audit Plugin Comment Handling Bypass

...

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib

...

Chromium: CVE-2026-3545 Insufficient data validation in Navigation

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3544 Heap buffer overflow in WebCodecs

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3543 Inappropriate implementation in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3542 Inappropriate implementation in WebAssembly

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3541 Inappropriate implementation in CSS

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3540 Inappropriate implementation in WebAudio

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3539 Object lifecycle issue in DevTools

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3538 Integer overflow in Skia

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2026-3536 Integer overflow in ANGLE

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability

'.../...//' in Azure Compute Gallery allows an authorized attacker to elevate privileges locally...

Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability

Permissive regular expression in Azure Compute Gallery allows an authorized attacker to elevate privileges locally...

Payment Orchestrator Service Elevation of Privilege Vulnerability

...

Microsoft Devices Pricing Program Remote Code Execution Vulnerability

...

Microsoft ACI Confidential Containers Information Disclosure Vulnerability

Initialization of a resource with an insecure default in Azure Compute Gallery allows an authorized attacker to disclose information over a network...

Sending certain HTTP/2 frames can cause a server to panic in golang.org/x/net

...

netfilter: nf_tables: fix use-after-free in nf_tables_addchain()

...

scsi: qla2xxx: Fix bsg_done() causing double free

...

romfs: check sb_set_blocksize() return value

...

platform/x86: classmate-laptop: Add missing NULL pointer checks

...

fbdev: smscufx: properly copy ioctl memory to kernelspace

...

Bytes is vulnerable to integer overflow in BytesMut::reserve

...

An integer overflow in the tt_var_load_item_variation_store function of the Freetype library in versions 2.13.2 and 2.13.3 may allow for an out of bounds read operation when parsing HVAR/VVAR/MVAR tables in OpenType variable fonts. This issue is fixed in version 2.14.2.

...

Vim has stack-buffer-overflow in build_stl_str_hl()

...

Vim has Heap-based Buffer Underflow in Emacs tags parsing

...

Vim has Heap-based Buffer Overflow in Emacs tags parsing

...

Vim has Heap-based Buffer Overflow and OOB Read in :terminal

...

Vim has a heap-buffer-overflow and a segmentation fault

...

Vim has OS Command Injection in netrw

...

In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization (runtime/intern.c) enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock() function, which performs unbounded memcpy() operations using attacker-controlled lengths from crafted Marshal data.

...

hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc()

...

net/sched: sch_qfq: do not free existing class in qfq_change_class()

...

nvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec

...

net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts

...