Memory Corruption
The latest Memory Corruption coverage — news, analysis, and updates from the WindowsNews.AI desk.
CVE-2026-52992: Critical ADFS Driver Bug Opens Linux to Out-of-Bounds Memory Attacks
A newly disclosed vulnerability in the Linux kernel's ADFS filesystem driver could allow attackers with physical access—or through malicious disk images—to corrupt kernel memory, potentially...
CISA Warns ABB Terra AC Wallbox JP Users: Patch Memory Flaws with Firmware 1.8.36
The Cybersecurity and Infrastructure Security Agency (CISA) has republished an advisory from ABB on May 21, 2026, warning owners of the Terra AC wallbox JP charger about three medium‑severity...
CVE-2026-31789: Critical Heap Buffer Overflow in Windows Hex Conversion Function
Microsoft has disclosed a critical heap buffer overflow vulnerability designated CVE-2026-31789 that affects multiple Windows versions through a flaw in hexadecimal conversion functions. This memory...
CVE-2026-34743: Critical XZ Utils Buffer Overflow Threatens Windows Supply Chain Security
A critical buffer overflow vulnerability in XZ Utils, designated CVE-2026-34743, has emerged as a significant threat to Windows systems and the broader software supply chain. The flaw resides in the...
Google Chrome CVE-2026-5912: Critical WebRTC Integer Overflow Vulnerability Requires Immediate Update to 147.0.7727.55
Google has disclosed a critical vulnerability in Chrome's WebRTC implementation that requires immediate attention from all Windows users. CVE-2026-5912 represents a high-severity integer overflow...
Chrome 147 patches critical WebRTC use-after-free bug; enterprise users must update now.
Google has released Chrome 147.0.7727.55 to address CVE-2026-5860, a critical use-after-free vulnerability in the WebRTC component. This memory corruption flaw could allow remote attackers to execute...
CVE-2026-4450: Critical Chrome V8 Out-of-Bounds Write Vulnerability Requires Immediate Patching
Google has disclosed a high-severity vulnerability in Chrome's V8 JavaScript engine that requires immediate patching to version 146.0.7680.153 or later. CVE-2026-4450 represents a serious...
CVE-2026-4463 WebRTC Heap Overflow: Critical Vulnerability Patched in Chrome 146 and Edge
Microsoft has released security updates addressing CVE-2026-4463, a critical heap buffer overflow vulnerability in the WebRTC component affecting both Microsoft Edge and Google Chrome. The...
CVE-2026-23868: Giflib Double-Free Vulnerability Threatens Windows Imaging Tools and Supply Chain
A critical memory management vulnerability in the widely used GIF library Giflib has been assigned CVE-2026-23868, creating immediate supply chain security concerns for Windows applications, imaging...
CVE-2026-25170: Windows Hyper-V Use-After-Free Vulnerability Enables Local Privilege Escalation
Microsoft documented CVE-2026-25170 on March 10, 2026, a critical use-after-free vulnerability in Windows Hyper-V that enables local privilege escalation. The Common Weakness Enumeration identifier...
CVE-2023-51257: Critical Jasper Library Vulnerability Threatens Linux Systems
A critical security vulnerability in the widely-used Jasper image library has been discovered, posing significant risks to Linux systems and applications that process JPEG-2000 images. Designated as...
U-Boot NFS Vulnerabilities: Critical Bootloader Security Risks Explained
The discovery of multiple critical vulnerabilities in Das U-Boot's NFS implementation between 2019 and 2022 revealed significant security weaknesses in one of the world's most widely used...