vulnerability

A recently disclosed Linux-kernel vulnerability, tracked as CVE-2025-21945, fixes a subtle but consequential use‑after‑free in the in‑kernel SMB server (ksmbd) — the bug can reliably produce kernel instability and therefore presents a high availability risk for any system whose kernel includes...

The Go standard library’s math/big package contained a subtle but dangerous bug in the Rat.SetString function that could be triggered by crafted input to force unbounded memory growth and crash services that parse or accept user-controlled rational numbers. The flaw — tracked as CVE-2022-23772 —...

A subtle ordering mistake in CUPS’ connection-handling code quietly opened a wide door for disruption: a use‑after‑free in the cupsdAcceptClient() path (tracked as CVE‑2023‑34241) can crash the printing daemon and, under some conditions, expose sensitive in‑process data — a practical...

The llhttp parser bug tracked as CVE-2023-30589 remains an important cautionary case for WindowsForum readers: Microsoft’s Security Response Center (MSRC) has publicly mapped the vulnerable open‑source component to Azure Linux, but that mapping is an inventory attestation — not a categorical...

The semver package—ubiquitous in the npm ecosystem—contained a Regular Expression Denial of Service (ReDoS) flaw that lets attackers hang or crash Node.js processes when untrusted input is parsed as a version range, and the vulnerability is tracked as CVE-2022-25883 with fixes released in semver...

Google’s widely used RPC stack has been rocked by a high‑impact denial‑of‑service flaw that can be triggered remotely against a range of gRPC deployments on POSIX platforms: CVE‑2023‑4785 arises from missing error handling in the gRPC TCP server and allows a remote attacker to exhaust server...

QEMU hosts worldwide were quietly at risk of abrupt, complete shutdowns after a subtle SCSI emulation bug allowed a guest to trigger a division-by-zero that kills the QEMU process and the running virtual machine itself, a denial-of-service flaw tracked as CVE‑2023‑42467. The defect—rooted in how...

The knplabs/knp-snappy library — a widely used PHP wrapper for wkhtmltopdf and wkhtmltoimage — contains a high‑severity unsafe deserialization vulnerability that can be trivially abused to achieve remote code execution when the application environment and usage patterns permit it; the bug...

PostCSS versions prior to 8.4.31 contain a subtle but consequential parsing bug (tracked as CVE-2023-44270) that can let attacker-supplied CSS hide live rules and properties inside what appears to be a comment — a behavior that undermines linters and other tools that rely on PostCSS to safely...

QEMU’s built‑in VNC server contains a logic error in its clipboard decompression routine that can trap the server process in an infinite loop, allowing a remote, authenticated client to trigger a denial‑of‑service condition by sending specially crafted clipboard data. Background / Overview QEMU...

GJSON versions before 1.9.3 contain a Regular Expression Denial of Service (ReDoS) flaw — tracked as CVE-2021-42836 — that can be triggered by crafted JSON paths or queries and allow an attacker to drive CPU consumption to the point of service disruption. Background / Overview GJSON is a widely...

A subtle NULL‑check omission in the Linux kernel’s AMD GPU display code (drm/amd/display) — tracked as CVE‑2024‑26648 — has been fixed upstream after maintainers discovered that the function edp_setup_replay() dereferenced internal structures before verifying pointer validity, creating a...

The short answer is: No — Azure Linux is not necessarily the only Microsoft product that could include the vulnerable Go net/http code, but it is the only Microsoft product Microsoft has publicly attested so far as “including the implicated open‑source library and therefore potentially...

A critical memory-safety flaw in the widely used cJSON library has been assigned CVE-2025-57052: a logic error in the array-index parsing code lets malformed JSON pointer strings bypass bounds checks, enabling out‑of‑bounds memory access that can crash or corrupt applications that rely on cJSON...

The json-c library’s long‑running reputation for light‑weight JSON parsing took a sharp turn in 2023 when a stack‑buffer‑overflow in the auxiliary sample program json_parse was assigned CVE‑2021‑32292 — a defect that can be triggered by crafted input to the parseit() function and which, in...

CISA this week added two high‑risk flaws to its Known Exploited Vulnerabilities (KEV) catalog — a critical OS command‑injection in the React Native Community CLI’s Metro development server (CVE‑2025‑11953) and an unauthenticated remote‑code‑execution (RCE) flaw in SmarterTools SmarterMail’s...

A newly disclosed memory-safety bug in the open-source OPC UA stack open62541 — tracked as CVE-2026-1301 — has been flagged by U.S. cyber authorities as a medium-severity vulnerability that can be triggered before authentication and that reliably causes process crashes and heap corruption in...

Microsoft has assigned CVE-2026-20959 to a SharePoint Server presentation‑layer (spoofing) vulnerability, and administrators should treat the entry as a vendor‑tracked, high‑urgency condition that requires immediate triage and likely patching or mitigations depending on the MSRC mapping for each...

Microsoft has assigned CVE-2026-20925 to an information-disclosure / spoofing defect in NTLM authentication — a File Explorer–adjacent weakness that, based on the vendor entry and community precedent, can cause a Windows host to leak NTLM negotiation material (NTLMv2 challenge/response blobs) to...

Microsoft’s Security Update Guide lists dozens of CSC/Offline Files fixes over the past two years, but a clear, verifiable vendor entry for CVE-2026-20839 could not be located in public vendor and national vulnerability feeds at the time of writing — treat that identifier as unverified until the...