matlock.ca // THREAT INTELLIGENCE — 2026-04-26

129Articles

7Categories

2026-04-26Date

🚨

Security Affairs newsletter Round 574 by Pierluigi Paganini – INTERNATIONAL EDITIONA new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. U.S. CISA adds SimpleHelp, Sa…

KEVSECURITYAFFAIRS.COM — 26 Apr 2026

🐛

CVE-2022-2068 The c_rehash script allows command injection

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31619 ALSA: fireworks: bound device-supplied status before string array lookup

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-41079 OpenPrinting CUPS: Heap out-of-bounds read in SNMP supply-level polling leaks stack memory to authenticated users

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31557 nvmet: move async event work off nvmet-wq

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31606 usb: gadget: f_hid: don't call cdev_init while cdev in use

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31646 net: lan966x: fix page_pool error handling in lan966x_fdma_rx_alloc_page_pool()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31620 ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31593 KVM: SEV: Reject attempts to sync VMSA of an already-launched/encrypted vCPU

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31667 Input: uinput - fix circular locking dependency with ff-core

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31590 KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31618 fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31617 usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31589 mm: call ->free_folio() directly in folio_unmap_invalidate()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31660 nfc: pn533: allocate rx skb before consuming bytes

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31605 fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31566 drm/amdgpu: Fix fence put before wait in amdgpu_amdkfd_submit_ib

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31599 media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31602 ALSA: ctxfi: Limit PTP to a single page

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31637 rxrpc: reject undecryptable rxkad response tickets

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31570 can: gw: fix OOB heap access in cgw_csum_crc8_rel()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31624 HID: core: clamp report_size in s32ton() to avoid undefined shift

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31651 mmc: vub300: fix NULL-deref on disconnect

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-23420 wifi: wlcore: Fix a locking bug

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31672 wifi: rt2x00usb: fix devres lifetime

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-23422 dpaa2-switch: Fix interrupt storm after receiving bad if_id in IRQ handler

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31565 RDMA/irdma: Fix deadlock during netdev reset with active connections

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31621 bnge: return after auxiliary_device_uninit() in error path

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31626 staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31663 xfrm: hold dev ref until after transport_finish NF_HOOK

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31615 usb: gadget: renesas_usb3: validate endpoint index in standard request handlers

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31610 ksmbd: fix mechToken leak when SPNEGO decode fails after token alloc

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-41066 lxml: Default configuration of iterparse() and ETCompatXMLParser() allows XXE to local files

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31645 net: lan966x: fix page pool leak in error paths

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-41907 uuid: Missing buffer bounds check in `v3`/`v5`/`v6` when `buf` is provided

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-41411 Vim: Command injection via backtick expansion in tag filenames

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31598 ocfs2: fix possible deadlock between unlink and dio_end_io_write

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31537 smb: server: make use of smbdirect_socket.send_io.bcredits

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-23414 tls: Purge async_hold in tls_decrypt_async_wait()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31603 staging: sm750fb: fix division by zero in ps_to_hz()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31608 smb: server: avoid double-free in smb_direct_free_sendmsg after smb_direct_flush_send_list()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31611 ksmbd: require 3 sub-authorities before reading sub_auth[2]

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-32147 SFTP chroot bypass via path traversal in SSH_FXP_FSETSTAT

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31600 arm64: mm: Handle invalid large leaf mappings correctly

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-41676 rust-openssl: Deriver::derive and PkeyCtxRef::derive can overflow short buffers on OpenSSL 1.1.1

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31627 i2c: s3c24xx: check the size of the SMBUS message before using it

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31671 xfrm_user: fix info leak in build_report()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31560 spi: spi-dw-dma: fix print error log when wait finish transaction

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-41678 rust-openssl: Incorrect bounds assertion in aes key wrap

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31612 ksmbd: validate EaNameLength in smb2_get_ea()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31568 s390/mm: Add missing secure storage access fixups for donated memory

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31587 ASoC: qcom: q6apm: move component registration to unmanaged version

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31575 mm/userfaultfd: fix hugetlb fault mutex hash calculation

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31662 tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31580 bcache: fix cached_dev.sb_bio use-after-free and crash

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-41681 rust-openssl: MdCtxRef::digest_final() writes past caller buffer with no length check

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31639 rxrpc: Fix key reference count leak from call->key

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31657 batman-adv: hold claim backbone gateways by reference

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31591 KVM: SEV: Lock all vCPUs when synchronzing VMSAs for SNP launch finish

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31629 nfc: llcp: add missing return after LLCP_CLOSED checks

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31579 wireguard: device: use exit_rtnl callback instead of manual rtnl_lock in pre_exit

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31628 x86/CPU: Fix FPDSS on Zen1

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31630 rxrpc: proc: size address buffers for %pISpc output

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31655 pmdomain: imx8mp-blk-ctrl: Keep the NOC_HDCP clock enabled

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31685 netfilter: ip6t_eui64: reject invalid MAC header for all packets

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31649 net: stmmac: fix integer underflow in chain mode

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31669 mptcp: fix slab-use-after-free in __inet_lookup_established

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31680 net: ipv6: flowlabel: defer exclusive option free until RCU teardown

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31576 media: hackrf: fix to not free memory after the device is registered in hackrf_probe()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31678 openvswitch: defer tunnel netdev_put to RCU release

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31595 PCI: endpoint: pci-epf-vntb: Stop cmd_handler work in epf_ntb_epc_cleanup

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31681 netfilter: xt_multiport: validate range encoding in checkentry

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31586 mm: blk-cgroup: fix use-after-free in cgwb_release_workfn()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31578 media: as102: fix to not free memory after the device is registered in as102_usb_probe()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31682 bridge: br_nd_send: linearize skb before parsing ND options

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31659 batman-adv: reject oversized global TT response buffers

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31625 HID: alps: fix NULL pointer dereference in alps_raw_event()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31679 openvswitch: validate MPLS set/set_masked payload length

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31674 netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31673 af_unix: read UNIX_DIAG_VFS data under unix_state_lock

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31664 xfrm: clear trailing padding in build_polexpire()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31622 NFC: digital: Bounds check NFC-A cascade depth in SDD response handler

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31597 ocfs2: fix use-after-free in ocfs2_fault() when VM_FAULT_RETRY

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31592 KVM: SEV: Protect *all* of sev_mem_enc_register_region() with kvm->lock

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31656 drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-23401 KVM: x86/mmu: Drop/zap existing present SPTE even when creating an MMIO SPTE

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31555 futex: Clear stale exiting pointer in futex_lock_pi() retry path

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31607 usbip: validate number_of_packets in usbip_pack_ret_submit()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31536 smb: server: let send_done handle a completion without IB_SEND_SIGNALED

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31583 media: em28xx: fix use-after-free in em28xx_v4l2_open()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31638 rxrpc: Only put the call ref if one was acquired

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31574 clockevents: Add missing resets of the next_event_forced flag

KEVMSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31596 ocfs2: handle invalid dinode in ocfs2_group_extend

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31581 ALSA: 6fire: fix use-after-free on disconnect

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31604 wifi: rtw88: fix device leak on probe failure

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31585 media: vidtv: fix nfeeds state corruption on start_streaming failure

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31577 nilfs2: fix NULL i_assoc_inode dereference in nilfs_mdt_save_to_shadow_map

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-41140 Poetry: Path traversal in tar extraction on Python 3.10.0 - 3.10.12 and 3.11.0 - 3.11.4

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31665 netfilter: nft_ct: fix use-after-free in timeout object destroy

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31670 net: rfkill: prevent unlimited numbers of rfkill events from being created

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31642 rxrpc: Fix call removal to use RCU safe deletion

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31613 smb: client: fix OOB reads parsing symlink error response

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31623 net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31594 PCI: endpoint: pci-epf-vntb: Remove duplicate resource teardown

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31609 smb: client: avoid double-free in smbd_free_send_io() after smbd_send_batch_flush()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-41677 rust-openssl: Out-of-bounds read in PEM password callback when user callback returns an oversized length

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31616 usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31601 vfio/xe: Reorganize the init to decouple migration from reset

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31668 seg6: separate dst_cache for input and output paths in seg6 lwtunnel

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31582 hwmon: (powerz) Fix use-after-free on USB disconnect

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31676 rxrpc: only handle RESPONSE during service challenge

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31588 KVM: x86: Use scratch field in MMIO fragment to hold small write values

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31677 crypto: af_alg - limit RX SG extraction by receive buffer budget

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31675 net/sched: sch_netem: fix out-of-bounds access in packet corruption

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31634 rxrpc: fix reference count leak in rxrpc_server_keyring()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31684 net: sched: act_csum: validate nested VLAN headers

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31658 net: altera-tse: fix skb leak on DMA mapping error in tse_start_xmit()

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-23394 af_unix: Give up GC if MSG_PEEK intervened.

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-23362 can: bcm: fix locking for bcm_op runtime updates

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-31788 xen/privcmd: restrict usage in unprivileged domU

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

CVE-2026-23360 nvme: fix admin queue leak on controller reset

MSRC.MICROSOFT.COM — 26 Apr 2026

🐛

Critical bug in CrowdStrike LogScale let attackers access files

SECURITYAFFAIRS.COM — 26 Apr 2026

⚠️

Week in review: Claude Mythos finds 271 Firefox flaws, Vercel breach

HELPNETSECURITY.COM — 26 Apr 2026

🔥

Trigona ransomware adopts custom tool to steal data and evade detection

SECURITYAFFAIRS.COM — 26 Apr 2026

🕵️

XChat launches standalone iOS app as security concerns remain

CYBERINSIDER.COM — 26 Apr 2026

🕵️

GopherWhisper: new China-linked APT targets Mongolia with Go-based malware

SECURITYAFFAIRS.COM — 26 Apr 2026

🕵️

Npm Slop & Wonky Software Supply Chains

PROGRAMMING.DEV — 26 Apr 2026

🌐

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 94

SECURITYAFFAIRS.COM — 26 Apr 2026

📡

California Engineer Identified in Suspected Shooting at White House Correspondents' Dinner

WIRED.COM — 26 Apr 2026