← Find more feeds

api.msrc.microsoft.com

MSRC Security Update Guide

Get the latest updates from MSRC Security Update Guide directly as they happen.

Follow now 554 followers

Latest posts

Last updated 3 days ago

CVE-2026-22701 filelock Time-of-Check-Time-of-Use (TOCTOU) Symlink Vulnerability in SoftFileLock

2 days ago

Read full

CVE-2025-68146 filelock has TOCTOU race condition that allows symlink attacks during lock file creation

2 days ago

Read full

CVE-2026-26125 Payment Orchestrator Service Elevation of Privilege Vulnerability

4 days ago

Read full

CVE-2026-23651 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability

4 days ago

Read full

CVE-2026-26124 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability

4 days ago

Read full

CVE-2026-26122 Microsoft ACI Confidential Containers Information Disclosure Vulnerability

4 days ago

Read full

CVE-2026-21536 Microsoft Devices Pricing Program Remote Code Execution Vulnerability

4 days ago

Read full

CVE-2024-42317 mm/huge_memory: avoid PMD-size page cache if needed

4 days ago

Read full

CVE-2025-21985 drm/amd/display: Fix out-of-bound accesses

4 days ago

Read full

CVE-2024-46754 bpf: Remove tst_run from lwt_seg6local_prog_ops.

4 days ago

Read full

CVE-2024-53219 virtiofs: use pages instead of pointer for kernel direct IO

4 days ago

Read full

CVE-2022-4543 A flaw named "EntryBleed" was found in the Linux Kernel Page Table Isolation (KPTI). This issue could allow a local attacker to leak KASLR base via prefetch side-channels based on TLB timing for Intel systems.

4 days ago

Read full

Or log in

Everything you care about in one place

MSRC Security Update Guide

Latest posts

CVE-2026-22701 filelock Time-of-Check-Time-of-Use (TOCTOU) Symlink Vulnerability in SoftFileLock

CVE-2025-68146 filelock has TOCTOU race condition that allows symlink attacks during lock file creation

CVE-2026-26125 Payment Orchestrator Service Elevation of Privilege Vulnerability

CVE-2026-23651 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability

CVE-2026-26124 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability

CVE-2026-26122 Microsoft ACI Confidential Containers Information Disclosure Vulnerability

CVE-2026-21536 Microsoft Devices Pricing Program Remote Code Execution Vulnerability

CVE-2024-42317 mm/huge_memory: avoid PMD-size page cache if needed

CVE-2025-21985 drm/amd/display: Fix out-of-bound accesses

CVE-2024-46754 bpf: Remove tst_run from lwt_seg6local_prog_ops.

CVE-2024-53219 virtiofs: use pages instead of pointer for kernel direct IO

CVE-2022-4543 A flaw named "EntryBleed" was found in the Linux Kernel Page Table Isolation (KPTI). This issue could allow a local attacker to leak KASLR base via prefetch side-channels based on TLB timing for Intel systems.

Try Feeder for free