Skip to content

TheWindowsUpdate.com

Opinions, tips, and news orbiting Microsoft

Search for:

Primary menu

Home
About TheWindowsUpdate.com

Month: February 2026

CVE-2025-48637 In multiple functions of mem_protect.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Posted on February 21, 2026 by Syndicated News — No Comments ↓

Information published. Continue reading CVE-2025-48637 In multiple functions of mem_protect.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.→

Posted in Republished Content | Leave a reply

CVE-2023-46847 Squid: denial of service in http digest authentication

Posted on February 21, 2026 by Syndicated News — No Comments ↓

Information published. Continue reading CVE-2023-46847 Squid: denial of service in http digest authentication→

Posted in Republished Content | Leave a reply

CVE-2025-2953 PyTorch torch.mkldnn_max_pool2d denial of service

Posted on February 21, 2026 by Syndicated News — No Comments ↓

Information published. Continue reading CVE-2025-2953 PyTorch torch.mkldnn_max_pool2d denial of service→

Posted in Republished Content | Leave a reply

CVE-2023-5824 Squid: dos against http and https

Posted on February 21, 2026 by Syndicated News — No Comments ↓

Information published. Continue reading CVE-2023-5824 Squid: dos against http and https→

Posted in Republished Content | Leave a reply

CVE-2025-14819 OpenSSL partial chain store policy bypass

Posted on February 21, 2026 by Syndicated News — No Comments ↓

Information published. Continue reading CVE-2025-14819 OpenSSL partial chain store policy bypass→

Posted in Republished Content | Leave a reply

CVE-2020-36426 An issue was discovered in Arm Mbed TLS before 2.24.0. mbedtls_x509_crl_parse_der has a buffer over-read (of one byte).

Posted on February 21, 2026 by Syndicated News — No Comments ↓

Information published. Continue reading CVE-2020-36426 An issue was discovered in Arm Mbed TLS before 2.24.0. mbedtls_x509_crl_parse_der has a buffer over-read (of one byte).→

Posted in Republished Content | Leave a reply

CVE-2021-24119 In Trusted Firmware Mbed TLS 2.24.0, a side-channel vulnerability in base64 PEM file decoding allows system-level (administrator) attackers to obtain information about secret RSA keys via a controlled-channel and side-channel attack on software running in isolated environments that can be single stepped, especially Intel SGX.

Posted on February 21, 2026 by Syndicated News — No Comments ↓

Information published. Continue reading CVE-2021-24119 In Trusted Firmware Mbed TLS 2.24.0, a side-channel vulnerability in base64 PEM file decoding allows system-level (administrator) attackers to obtain information about secret RSA keys via a controlled-channel and side-channel attack on software running in isolated environments that can be single stepped, especially Intel SGX.→

Posted in Republished Content | Leave a reply

CVE-2025-14017 broken TLS options for threaded LDAPS

Posted on February 21, 2026 by Syndicated News — No Comments ↓

Information published. Continue reading CVE-2025-14017 broken TLS options for threaded LDAPS→

Posted in Republished Content | Leave a reply

Post navigation

← Older posts

Newer posts →

Primary Sidebar Widget Area

Search for:

Recent Posts

CVE-2026-50292 In libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-group unescaped phys output can inject udev properties leading to arbitrary root code execution
CVE-2026-46272 coresight: tmc-etr: Fix race condition between sysfs and perf mode
CVE-2026-46250 MIPS: Work around LLVM bug when gp is used as global register variable
CVE-2026-50031 ipmi-oem in FreeIPMI before 1.6.18 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface (IPMI) specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system management. It is most commonly used for sensor reading (e.g., CPU temperatures through the ipmi-sensors command within FreeIPMI) and remote power control (the ipmipower command). The ipmi-oem client command implements a set of a IPMI OEM commands for specific hardware vendors. If a user has supported hardware, they may wish to use the ipmi-oem command to send a request to a server to retrieve specific information. Two subcommands “ipmi-oem dell get-active-directory-config” and “ipmi-oem fujitsu get-sel-entry-long-text” were found to have exploitable buffer overflows on response messages.
CVE-2026-50263 Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: use-after-free information disclosure in createsaverwindow()

Archives

Copyright © 2026 TheWindowsUpdate.com. All Rights Reserved.

Theme: Catch Box by Catch Themes

Scroll Up