cve security

CVE-2026-7338 is a high-severity use-after-free flaw in Chromium’s Cast component, disclosed on April 28, 2026, and fixed in Google Chrome 147.0.7727.138 after researchers found local-network malicious traffic could potentially trigger heap corruption before the update. The vulnerability is not...

Linux kernel maintainers have published a fix for CVE-2026-31619, a flaw in the ALSA fireworks FireWire audio driver that can let a device-supplied 32-bit status value run past the end of a string table. The bug is narrowly scoped, but it is exactly the kind of kernel defect that matters: a...

In the Linux kernel’s Bluetooth stack, CVE-2026-31498 is the kind of bug that looks routine at first glance and then turns out to be two problems in one: a resource leak in L2CAP ERTM reconfiguration and a potential infinite loop triggered by a zero packet size. The published fix targets the...

Linux administrators received a fresh reminder this week that ext4’s maturity does not make it immune to memory-safety bugs. CVE-2026-31449 is a slab-out-of-bounds read in the Linux kernel’s ext4 extent-tree logic, and it appears in a code path that corrects index entries after leaf extents are...

Linux has published CVE-2026-31510 for a Bluetooth L2CAP bug that can crash the kernel when l2cap_sock_ready_cb touches a sk pointer without first checking whether it is NULL. The published record includes a KASAN-backed null-pointer dereference trace and ties the issue to an l2cap_info_timeout...

CVE-2026-31489 is a classic Linux kernel lifetime bug with outsized operational meaning: a seemingly small double-put in the Meson SPI controller driver can still turn into a crash, a teardown failure, or a hard-to-debug stability problem when a system removes the device. The issue is simple on...

CVE-2026-31462 is a small-looking Linux kernel flaw with a very specific failure mode, but it sits in exactly the kind of plumbing that can cause outsized disruption when it misbehaves. The vulnerability in drm/amdgpu is about immediate PASID reuse after a process exits, where the GPU can...

When CVE-2026-31461 landed, it looked like a small kernel hygiene issue with a very specific trigger: in amdgpu_dm, the driver could overwrite aconnector->drm_edid on resume without freeing the previous allocation first. The result was a memory leak in the Linux kernel’s AMD display path, and...

Microsoft’s CVE-2026-32157 entry for the Remote Desktop Client Remote Code Execution Vulnerability is exactly the kind of advisory that rewards careful reading rather than quick scanning. The label tells defenders that the issue is serious, but the confidence wording is what really matters...

Microsoft’s description for CVE-2026-26154 points to a WSUS tampering vulnerability, and the language around it matters as much as the identifier itself. The short version of the metric you highlighted is that Microsoft is signaling how certain it is that the bug exists and how much technical...

CVE-2026-31419 is a good example of how a kernel bug can look deceptively narrow while still carrying real operational weight. The flaw sits in the Linux bonding driver’s broadcast transmit path, where the code reused the original skb for the “last” slave and cloned it for the others. Under...

The Linux kernel’s Wi-Fi mesh stack has picked up another security-relevant crash fix, and this one is a reminder that optional protocol elements can be just as dangerous as the core packet parser. CVE-2026-23396 tracks a NULL pointer dereference in mac80211’s mesh_matches_local() routine, where...

CVE-2026-23339 is a small-looking Linux kernel bug with the kind of lifecycle mistake that kernel engineers never ignore: nci_transceive() takes ownership of an skb, then returns early on several error paths without freeing it. The result is a memory leak on the -EPROTO, -EINVAL, and -EBUSY...

When Microsoft’s security feed labeled CVE-2026-23347 around the Fintek F81604 USB CAN driver, the underlying bug looked deceptively small: a missing call to usb_anchor_urb() in the read bulk callback. In kernel terms, though, that small omission matters because an anchored URB is what lets the...

The Linux kernel’s ALSA stack has another reminder that tiny copy-and-paste mistakes can become security bugs: CVE-2026-23318 lets a UAC3 USB audio header skip validation because the driver checks it against the wrong protocol version. In practice, that means an actual UAC3 device may never...

CVE-2026-23298 is a reminder that kernel security bugs do not need dramatic memory corruption to become operationally serious. In this case, the Linux can: ucan driver could enter an infinite loop when a malformed device message reports a zero-length payload, causing ucan_read_bulk_callback() to...

When a Linux kernel CVE lands in Microsoft’s Security Update Guide, it usually means the issue has moved beyond a niche upstream bug and into enterprise patch-triage territory. CVE-2026-23277 is a good example: it is a NULL pointer dereference in the Linux networking stack’s teql path, triggered...

The Microsoft Security Response Center entry for CVE-2026-23266 is not accessible in the source set here, but the surrounding evidence points to a Linux kernel framebuffer issue in the legacy rivafb path, specifically the nv3_arb routine, where a divide-by-zero condition can crash the kernel...

CVE-2026-32169 has landed in Microsoft’s Security Update Guide as an Azure Cloud Shell elevation-of-privilege vulnerability, but the public record at this stage appears sparse on the exact technical mechanics. That combination matters because Cloud Shell sits at the intersection of identity...