CVE-2026-3644 Incomplete control character validation in http.cookies
Published March 19, 2026
Information published.
Microsoft Security Response Center Blog Alerts
CVE-2026-4224 Stack overflow parsing XML with deeply nested DTD content models
Published March 19, 2026
Information published.
CVE-2026-27459 pyOpenSSL DTLS cookie callback buffer overflow
Published March 19, 2026
Information published.
CVE-2026-27448 pyOpenSSL allows TLS connection bypass via unhandled callback exception in set_tlsext_servername_callback
Published March 19, 2026
Information published.
CVE-2025-71265 fs: ntfs3: fix infinite loop in attr_load_runs_range on inconsistent metadata
Published March 19, 2026
Information published.
CVE-2025-71239 audit: add fchmodat2() to change attributes class
Published March 18, 2026
Information published.
CVE-2026-23241 audit: add missing syscalls to read class
Published March 18, 2026
Information published.
CVE-2026-4111 Libarchive: infinite loop denial of service in rar5 decompression via archive_read_data() in libarchive
Published March 17, 2026
Information published.
CVE-2026-23943 Pre-auth SSH DoS via unbounded zlib inflate
Published March 17, 2026
Information published.
CVE-2026-23942 SFTP root escape via component-agnostic prefix check in ssh_sftpd
Published March 17, 2026
Information published.
