Microsoft’s July 14, 2026 security updates fix CVE-2026-49796, a Windows GDI+ heap-based buffer overflow that can lead to code execution after a user interacts with malicious content. The vulnerability reaches across supported Windows 10, Windows 11, and Windows Server releases, making the...
Microsoft has patched CVE-2026-54122, an 8.4-rated Windows GDI+ remote code execution vulnerability affecting supported and Extended Security Update editions of Windows 10, Windows 11, and Windows Server. The flaw is a heap-based buffer overflow that can give an unauthorized attacker full...