Windows K2: Microsoft’s Two-Year Plan to Fix Windows 11 Performance and Trust
Microsoft has assembled an internal team codenamed “Windows K2,” tasked with overhauling the quality of Windows 11 over the next two years. The initiative, first reported to have taken shape in...
CVE-2026-31499 L2CAP Deadlock Shows Why Medium Linux Kernel CVEs Demand Action
A newly published Linux kernel vulnerability exposes a weakness in the Bluetooth subsystem's L2CAP layer—one that can freeze a system solid under the right conditions. CVE-2026-31499, rated medium...
Patch Released for CVE-2026-31540 Linux Intel GPU Crash on Suspend
A NULL pointer dereference in the Linux i915 graphics driver, now tracked as CVE-2026-31540, can crash Intel GPU systems when the required firmware is missing and a suspend/resume cycle is triggered....
CVE-2026-31508: Why a Linux Kernel Open vSwitch Race Condition Demands Immediate Windows Attention
CVE-2026-31508 landed in the National Vulnerability Database on April 22, 2026, with a high-severity score and a race condition that security teams cannot ignore. The flaw, which was updated on April...
CVE-2026-31546: Linux Kernel Bonding Driver debugfs NULL Dereference Exposes Windows Subsystem for Linux to Local DoS
The U.S. National Vulnerability Database published CVE-2026-31546 on April 24, 2026, flagging a medium-severity denial-of-service vulnerability in the Linux kernel’s bonding driver. Modified on...
CVE-2026-31545: Linux Kernel NFC Driver Flaw Fixed, Sleepable GPIO Context Bug Resolved
The Linux kernel project has patched a medium-severity vulnerability in the NXP NCI NFC driver, tracked as CVE-2026-31545, that could allow local attackers to disrupt system availability. Disclosed...
CVE-2026-34978: CUPS RSS Path Traversal Corrupts Job Cache – What Windows Users Must Know
A newly disclosed vulnerability in OpenPrinting CUPS, tracked as CVE-2026-34978, lets remote attackers corrupt the critical job.cache file by injecting a malicious RSS notification URI. Published in...
Project K2 Aims to Transform Windows 11 into a Console-Like SteamOS for Gamers
Microsoft is working on an internal project codenamed 'K2' that aims to bring SteamOS-like polish and gaming efficiency to Windows 11, according to a report from Windows Central. The initiative...
Incus Image Cache Poisoning Bug Fixed in Version 6.23.0
Incus versions prior to 6.23.0 contain a medium-severity vulnerability tracked as CVE-2026-33542, disclosed in late March 2026. The flaw stems from a missing combined fingerprint verification when...
Microsoft 365 Copilot Surpasses 20M Paid Seats, AI Now Core to Office Workflows
Microsoft announced on April 29, 2026, that Microsoft 365 Copilot has surpassed 20 million paid enterprise seats, marking a defining moment in the company’s push to embed AI directly into the daily...
Exchange Online to Block TLS 1.0/1.1 for POP and IMAP by July 2026
Microsoft has set July 2026 as the final cutoff for Exchange Online POP3 and IMAP4 clients that still negotiate Transport Layer Security (TLS) versions 1.0 or 1.1. After that date, every connection...
OpenAI Breaks Free from Azure Exclusivity: Multi-Cloud Deal with AWS Reshapes the Agent Era
On April 27, 2026, Microsoft and OpenAI tore up the most consequential cloud exclusivity deal in AI history. In a joint statement, the companies announced a landmark amendment to their partnership:...