Network Services Group

Network Services Group https://validator.w3.org/feed/docs/rss2.html Blog CVE-2026-35201 Discount has an Out-of-bounds Read in rdiscount CVE-2026-40179 Prometheus: Stored XSS via metric names and label values in web UI tooltips and metrics explorer CVE-2025-14821 Libssh: libssh: insecure default configuration leads to local man-in-the-middle attacks on windows CVE-2026-39956 jq: Missing runtime type checks for _strindices lead to crash and limited memory disclosure CVE-2026-35199 SymCrypt SymCryptXmssSign function – Heap overflow via 64->32-bit leaf-count truncation CVE-2026-41035 CVE-2026-35469 SpdyStream: DOS on CRI CVE-2026-40164 jq: Algorithmic complexity DoS via hardcoded MurmurHash3 seed CVE-2026-31418 netfilter: ipset: drop logically empty buckets in mtype_del Welcome to Network Services Group CVE-2026-39979 jq: Out-of-Bounds Read in jv_parse_sized() Error Formatting for Non-NUL-Terminated Counted Buffers CVE-2026-32316 jq: Integer overflow in jvp_string_append() allows Heap-based Buffer Overflow CVE-2026-32223 Windows USB Printing Stack (usbprint.sys) Elevation of Privilege Vulnerability CVE-2025-64669 Windows Admin Center Elevation of Privilege Vulnerability CVE-2026-23666 .NET Framework Denial of Service Vulnerability CVE-2026-27143 Missing bound checks can lead to memory corruption in safe Go in cmd/compile CVE-2026-32282 TOCTOU permits root escape on Linux via Root.Chmod in os in internal/syscall/unix CVE-2026-3184 Util-linux: util-linux: access control bypass due to improper hostname canonicalization CVE-2026-27456 util-linux: TOCTOU Race Condition in util-linux mount(8) – Loop Device Setup CVE-2026-4647 Binutils: out-of-bounds read in xcoff relocation processing in gnu binutils bfd library CVE-2026-33948 jq: Embedded-NUL Truncation in CLI JSON Input Path Causes Prefix-Only Validation of Malformed Input Modern password tips based on NIST guidelines CVE-2026-39856 osslsigncode has an Out-of-Bounds Read via Unvalidated Section Bounds in PE Page Hash Calculation CVE-2026-33947 jq: Unbounded Recursion in jv_setpath(), jv_getpath() and delpaths_sorted() CVE-2026-39855 osslsigncode has an Integer Underflow in PE Page Hash Calculation Can Cause Out-of-Bounds Read CVE-2026-39853 osslsigncode has a Stack Buffer Overflow via Unbounded Digest Copy During Signature Verification CVE-2026-28390 Possible NULL Dereference When Processing CMS KeyTransportRecipientInfo CVE-2026-28389 Possible NULL Dereference When Processing CMS KeyAgreeRecipientInfo CVE-2026-40226 CVE-2026-34757 LIBPNG has a yse-after-free in png_set_PLTE, png_set_tRNS and png_set_hIST leading to corrupted chunk data and potential heap information disclosure CVE-2026-35206 Helm Chart extraction output directory collapse via `Chart.yaml` name dot-segment CVE-2026-34743 XZ Utils: Buffer overflow in lzma_index_append() CVE-2026-35535 CVE-2026-35385 CVE-2026-35386 CVE-2026-35388 CVE-2026-4878 Libcap: libcap: privilege escalation via toctou race condition in cap_set_file() CVE-2026-33810 Case-sensitive excludedSubtrees name constraints cause Auth Bypass in crypto/x509 CVE-2026-27140 Code execution vulnerability in SWIG code generation in cmd/go Cut IT costs without cutting corners: The case for thin and zero clients 2026 guide to choosing the best VoIP headset for peak productivity 6 Simple ways to recover lost Excel files CVE-2026-23411 apparmor: fix race between freeing data and fs accessing it CVE-2026-23410 apparmor: fix race on rawdata dereference CVE-2026-23409 apparmor: fix differential encoding verification CVE-2026-23408 apparmor: Fix double free of ns_name in aa_replace_profiles() CVE-2026-23407 apparmor: fix missing bounds check on DEFAULT table in verify_dfa() CVE-2026-23406 apparmor: fix side-effect bug in match_char() macro usage CVE-2026-23405 apparmor: fix: limit the number of levels of policy namespaces