Articles from 2026
Browse all Windows news articles published in 2026
CVE-2026-31450 ext4 Race Crash: Publish-Before-Init Ordering Bug Explained
CVE-2026-31450 is a textbook example of how a tiny ordering mistake in the Linux kernel can become a real crash in the field. The bug lives in ext4’s journaling glue, where ext4_inode_attach_jinode()
CVE-2026-31512: Linux Bluetooth L2CAP OOB Read from Missing skb Length Check
CVE-2026-31512 is a small-looking Linux kernel flaw with the kind of security significance that only packet-processing code can really deliver. The issue sits in the Bluetooth L2CAP path, where l2cap_
Power Apps Custom Tools and Widgets Now Power Copilot App Conversations
Microsoft has moved Power Apps deeper into the Microsoft 365 Copilot experience, and the latest public preview is more than a cosmetic upgrade. With custom tools and rich app-powered UI, makers can no
CVE-2026-31512 Linux Bluetooth L2CAP OOB Read: Fix Adds SDU Length Validation
CVE-2026-31512 is a reminder that many kernel security bugs are not dramatic memory-smasher headlines, but small validation mistakes sitting in the middle of critical networking code. In this case, th
CVE-2026-31448 ext4 infinite loop locks during mkdir/mknod: blocked tasks
In the Linux kernel’s ext4 filesystem, a newly published vulnerability, CVE-2026-31448, exposes a failure path that can leave the filesystem spinning in an infinite loop while holding critical locks.
CVE-2026-31448 ext4 Infinite Loop: Extent/Xattr Bug and Patch Guidance
The Linux kernel’s ext4 filesystem has a newly published vulnerability, CVE-2026-31448, that can trap the filesystem in an infinite loop under a narrow but nasty failure sequence involving extent allo
CVE-2026-31495: Linux ctnetlink Netlink Policy Validation Fix
CVE-2026-31495 is a reminder that some of the most consequential Linux kernel flaws are not dramatic memory-corruption headlines but quiet trust-boundary failures in the networking stack. In this case
XFS CVE-2026-31454 Use-After-Free: AIL Pointer Fix Explained
XFS use-after-free CVE-2026-31454 exposes a familiar kernel trap in a very specific corner of Linux metadata manage
CVE-2026-31461: amdgpu_dm EDID Memory Leak Fixed in Linux Kernel Resume
When CVE-2026-31461 landed, it looked like a small kernel hygiene issue with a very specific trigger: in amdgpu_dm, the driver could overwrite aconnector->drm_edid on resume without freeing the previo
Linux AMDGPU DRM EDID Leak Fix (CVE-2026-31461) Explained for Stable Updates
Linux has just gained another narrowly scoped but still important security fix in its AMD display stack, and this time the issue is a memory leak rather than a crash or a classic memory corruption bug
CVE-2026-31464: IBM Power ibmvfc Kernel Leak via Unchecked num_written Count
A newly published Linux kernel CVE is drawing attention for a familiar but dangerous reason: a trusted control path accepted attacker-controlled data without enforcing a hard ceiling. In CVE-2026-3146
CVE-2026-31464: Linux ibmvfc Out-of-Bounds Read Can Leak Kernel Memory
The Linux kernel has a new security issue on the radar, and this one is a reminder that even highly specialized storage and virtualization paths can leak sensitive state when a single bounds check is