CVE-2026-41603 Apache Thrift: Java TSSLTransportFactory hostname verification
Published May 13, 2026
Information published.
Microsoft Security Response Center Blog Alerts
CVE-2026-41602 Apache Thrift: Go TFramedTransport uint32 overflow
Published May 13, 2026
Information published.
CVE-2025-48431 Apache Thrift: Specially crafted input can crash a c_glib Thrift server with invalid pointer error.
Published May 13, 2026
Information published.
CVE-2026-42151 Prometheus Azure AD remote write OAuth client secret exposed via config API
Published May 13, 2026
Information published.
CVE-2025-39779 btrfs: subpage: keep TOWRITE tag until folio is cleaned
Published May 11, 2026
Information published.
CVE-2026-43311 soc/tegra: pmc: Fix unsafe generic_handle_irq() call
Published May 11, 2026
Information published.
CVE-2025-21634 cgroup/cpuset: remove kernfs active break
Published May 11, 2026
Information published.
CVE-2026-31568 s390/mm: Add missing secure storage access fixups for donated memory
Published May 11, 2026
Information published.
CVE-2025-39707 drm/amdgpu: check if hubbub is NULL in debugfs/amdgpu_dm_capabilities
Published May 11, 2026
Information published.
CVE-2026-43398 drm/amdgpu: add upper bound check on user inputs in wait ioctl
Published May 11, 2026
Information published.
