CVE-2024-46754 bpf: Remove tst_run from lwt_seg6local_prog_ops.
Published March 5, 2026
Information published.
Microsoft Security Response Center Blog Alerts
CVE-2024-53219 virtiofs: use pages instead of pointer for kernel direct IO
Published March 5, 2026
Information published.
CVE-2022-4543 A flaw named "EntryBleed" was found in the Linux Kernel Page Table Isolation (KPTI). This issue could allow a local attacker to leak KASLR base via prefetch side-channels based on TLB timing for Intel systems.
Published March 5, 2026
Information published.
CVE-2025-68121 Unexpected session resumption in crypto/tls
Published March 5, 2026
Information published.
CVE-2026-0038 In multiple functions of mem_protect.c, there is a possible way to execute arbitrary code due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Published March 5, 2026
Information published.
CVE-2026-3336 PKCS7_verify Certificate Chain Validation Bypass in AWS-LC
Published March 5, 2026
Information published.
CVE-2026-3338 PKCS7_verify Signature Validation Bypass in AWS-LC
Published March 5, 2026
Information published.
CVE-2026-23865 An integer overflow in the tt_var_load_item_variation_store function of the Freetype library in versions 2.13.2 and 2.13.3 may allow for an out of bounds read operation when parsing HVAR/VVAR/MVAR tables in OpenType variable fonts. This issue is fixed in version 2.14.2.
Published March 5, 2026
Information published.
CVE-2026-24821 A heap-based buffer over-read that might affect a system that compiles untrusted Lua code in turanszkij/WickedEngine.
Published March 5, 2026
Information published.
CVE-2025-58160 Tracing logging user input may result in poisoning logs with ANSI escape sequences
Published March 4, 2026
Information published.
