CVE-2026-33810 Case-sensitive excludedSubtrees name constraints cause Auth Bypass in crypto/x509
Published April 12, 2026
Information published.
Microsoft Security Response Center Blog Alerts
CVE-2026-27140 Code execution vulnerability in SWIG code generation in cmd/go
Published April 12, 2026
Information published.
CVE-2026-39856 osslsigncode has an Out-of-Bounds Read via Unvalidated Section Bounds in PE Page Hash Calculation
Published April 12, 2026
Information published.
CVE-2026-39855 osslsigncode has an Integer Underflow in PE Page Hash Calculation Can Cause Out-of-Bounds Read
Published April 12, 2026
Information published.
CVE-2026-39853 osslsigncode has a Stack Buffer Overflow via Unbounded Digest Copy During Signature Verification
Published April 12, 2026
Information published.
CVE-2026-28390 Possible NULL Dereference When Processing CMS KeyTransportRecipientInfo
Published April 12, 2026
Information published.
CVE-2026-28389 Possible NULL Dereference When Processing CMS KeyAgreeRecipientInfo
Published April 12, 2026
Information published.
CVE-2026-40226
Published April 12, 2026
Information published.
CVE-2026-34757 LIBPNG has a yse-after-free in png_set_PLTE, png_set_tRNS and png_set_hIST leading to corrupted chunk data and potential heap information disclosure
Published April 12, 2026
Information published.
CVE-2026-35206 Helm Chart extraction output directory collapse via `Chart.yaml` name dot-segment
Published April 12, 2026
Information published.
