CVE-2026-39855 osslsigncode has an Integer Underflow in PE Page Hash Calculation Can Cause Out-of-Bounds Read
Published April 12, 2026
Information published.
Microsoft Security Response Center Blog Alerts
CVE-2026-39853 osslsigncode has a Stack Buffer Overflow via Unbounded Digest Copy During Signature Verification
Published April 12, 2026
Information published.
CVE-2026-28390 Possible NULL Dereference When Processing CMS KeyTransportRecipientInfo
Published April 12, 2026
Information published.
CVE-2026-28389 Possible NULL Dereference When Processing CMS KeyAgreeRecipientInfo
Published April 12, 2026
Information published.
CVE-2026-40226
Published April 12, 2026
Information published.
CVE-2026-34757 LIBPNG has a yse-after-free in png_set_PLTE, png_set_tRNS and png_set_hIST leading to corrupted chunk data and potential heap information disclosure
Published April 12, 2026
Information published.
CVE-2026-35206 Helm Chart extraction output directory collapse via `Chart.yaml` name dot-segment
Published April 12, 2026
Information published.
CVE-2026-23405 apparmor: fix: limit the number of levels of policy namespaces
Published April 10, 2026
Information published.
CVE-2026-23404 apparmor: replace recursive profile removal with iterative approach
Published April 10, 2026
Information published.
CVE-2026-23403 apparmor: fix memory leak in verify_header
Published April 10, 2026
Information published.
