Today's Top Windows System Articles for 2026-05-08
Articles for the IT Professional. Each day we look at roughly 100 sites for Windows articles and bring them here.
AMD 26.5.1 driver lands with Pragmata support and Resident Evil Requiem stutter fixes
AMD graphics users now have a new driver update they can upgrade to, with Adrenalin Edition 26.5.1 bringing support for five new games and bug fixes. Read more...
Neowin
May 6, 2026 - neowin.net
Defender Misflags DigiCert Root Certificates, Breaking Windows SSL Trust
Microsoft Defender flagged two DigiCert root certificates as Trojan:Win32/Cerdigent.A!dha on April 30, breaking SSL/TLS until Security Intelligence 1.449.430.0. The post Defender Misflags DigiCert Roo...
WinBuzzer
May 6, 2026 - winbuzzer.com
We've only gone and done it: Changed what you're used to
A new coat of paint
www.theregister.com - Articles
May 6, 2026 - theregister.com
Mars rover hits rocky snag with power tool
All driller, no filler
www.theregister.com - Articles
May 6, 2026 - theregister.com
Matt Taibbi Loses His Vexatious SLAPP Suit As Judge Explains What A ‘Metaphor’ Means
Perhaps Matt Taibbi’s most famous bit of writing ever was his takedown of Goldman Sachs in Rolling Stone (and then in a book that followed) that opened with the highly evocative metaphor: The world’s ...
Techdirt
May 6, 2026 - techdirt.com
Spooked by Mythos, Trump suddenly realized AI safety testing might be good
Trump forced to admit Biden was right on AI safety testing.
Ars Technica - All content
May 6, 2026 - arstechnica.com
Young evil genius forces hamster to run on wheel to power his gadgets
Okay, the rodent was a willing participant - after all, who turns down treats for a spin that charges a phone?
www.theregister.com - Articles
May 6, 2026 - theregister.com
CVE-2026-33190 CoreDNS TSIG authentication bypass on encrypted DNS transports
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-33489 CoreDNS transfer plugin subzone ACL bypass via lexicographic zone comparison
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-32936 CoreDNS DoH GET path missing size validation causes CPU and memory amplification
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-32934 CoreDNS DNS-over-QUIC unbounded goroutine growth leads to denial of service
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-35579 CoreDNS TSIG authentication bypass on gRPC, QUIC, DoH, and DoH3 transports
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43073 x86-64: rename misleadingly named '__copy_user_nocache()' function
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-31455 xfs: stop reclaim before pushing AIL during unmount
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-34317
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-34318
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-34319
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-42151 Prometheus Azure AD remote write OAuth client secret exposed via config API
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-42154 Prometheus: remote read endpoint allows denial of service via crafted snappy payload
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43125 dlm: validate length in dlm_search_rsb_tree
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43248 vhost: move vdpa group bound check to vhost_vdpa
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43176 wifi: rtw89: pci: validate release report content before using for RTL8922DE
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43204 ASoC: qcom: q6asm: drop DSP responses for closed data streams
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43131 drm/amd/pm: Fix null pointer dereference issue
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43126 ALSA: mixer: oss: Add card disconnect checkpoints
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43127 ntfs3: fix circular locking dependency in run_unpack_ex
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43161 iommu/vt-d: Skip dev-iotlb flush for inaccessible PCIe device without scalable mode
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43198 tcp: fix potential race in tcp_v6_syn_recv_sock()
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43245 ntfs: ->d_compare() must not block
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2025-71290 misc: ti_fpc202: fix a potential memory leak in probe function
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43137 ASoC: SOF: Intel: hda: Fix NULL pointer dereference
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43115 srcu: Use irq_work to start GP in tiny SRCU
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43234 team: avoid NETDEV_CHANGEMTU event when unregistering slave
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2025-71293 drm/amdgpu/ras: Move ras data alloc before bad page check
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43172 wifi: iwlwifi: fix 22000 series SMEM parsing
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2025-71285 net: qrtr: Drop the MHI auto_queue feature for IPCR DL channels
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43197 netconsole: avoid OOB reads, msg is not nul-terminated
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43185 ksmbd: fix signededness bug in smb_direct_prepare_negotiation()
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2025-71273 wifi: rtw88: Use devm_kmemdup() in rtw_set_supported_band()
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43118 btrfs: fix zero size inode with non-zero size after log replay
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43109 x86: shadow stacks: proper error handling for mmap lock
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43153 xfs: remove xfs_attr_leaf_hasname
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43129 ima: verify the previous kernel's IMA buffer lies in addressable RAM
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43116 netfilter: ctnetlink: ensure safe access to master conntrack
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43274 mailbox: mchp-ipc-sbi: fix out-of-bounds access in mchp_ipc_get_cluster_aggr_irq()
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43244 kcm: fix zero-frag skb in frag_list on partial sendmsg error
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43191 drm/amd/display: Adjust PHY FSM transition to TX_EN-to-PLL_ON for TMDS on DCN35
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43258 alpha: fix user-space corruption during memory compaction
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2025-71289 fs/ntfs3: handle attr_set_size() errors when truncating files
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43107 xfrm: account XFRMA_IF_ID in aevent size calculation
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43243 drm/amd/display: Add signal type check for dcn401 get_phyd32clk_src
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2025-71294 drm/amdgpu: fix NULL pointer issue buffer funcs
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43250 usb: chipidea: udc: fix DMA and SG cleanup in _ep_nuke()
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43237 drm/amdgpu: Refactor amdgpu_gem_va_ioctl for Handling Last Fence Update and Timeline Management v4
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43201 APEI/GHES: ARM processor Error: don't go past allocated memory
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43219 net: cpsw_new: Fix potential unregister of netdev that has not been registered yet
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43165 hwmon: (nct7363) Fix a resource leak in nct7363_present_pwm_fanin
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43088 net: af_key: zero aligned sockaddr tail in PF_KEY exports
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43195 drm/amdgpu: validate user queue size constraints
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2025-71272 most: core: fix resource leak in most_register_interface error paths
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43213 wifi: rtw89: pci: validate sequence number of TX release report
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43228 hfs: Replace BUG_ON with error handling for CNID count checks
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43216 net: Drop the lock in skb_may_tx_timestamp()
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43119 Bluetooth: hci_sync: annotate data-races around hdev->req_status
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43267 wifi: rtw89: fix potential zero beacon interval in beacon tracking
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43101 ipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data()
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43199 net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43083 net: ioam6: fix OOB and missing lock
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43870 Apache Thrift: Node.js web_server.js multi-vulnerability
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43868 Apache Thrift: Rust implementation vulnerable to CVE-2020-13949 pattern
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-28810 Predictable DNS Transaction IDs Enable Cache Poisoning in Built-in Resolver
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-33845 Gnutls: gnutls: denial of service via dtls zero-length fragment
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-3832 Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-33523 Apache HTTP Server: multiple modules: HTTP response splitting forwarding malicious status line
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-23918 Apache HTTP Server: http2: double free and possible RCE on early reset
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-34059 Apache HTTP Server: mod_proxy_ajp: Heap Over-Read and memory disclosure in ajp_parse_data()
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-34032 Apache HTTP Server: mod_proxy_ajp: Heap Buffer Over-Read Due to Missing Null-Termination Check (ajp_msg_get_string)
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-24072 Apache HTTP Server: mod_rewrite elevation of privileges via ap_expr
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-33006 Apache HTTP Server: mod_auth_digest timing attack
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-33007 Apache HTTP Server: mod_authn_socache crash
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-29169 Apache HTTP Server: mod_dav_lock indirect lock crash
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-29168 Apache HTTP Server: mod_md unrestricted OCSP response
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-33857 Apache HTTP Server: Off-by-one OOB reads in AJP getter functions
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-6383 Kubevirt: kubevirt: unauthorized subresource access due to improper rbac evaluation
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-43964
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-34875
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-34874
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-34876
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-25835
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2025-66442
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-34873
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-34871
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-34872
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-25834
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-25833
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
CVE-2026-41082
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
Hosting company pwned
$1 submitted by /u/Puzzleheaded_You2985
Reddit : Sysadmin
May 7, 2026 - reddit.com
CVE-2025-68768 inet: frags: flush pending skbs in fqdir_pre_exit()
Information published.
MSRC Security Update Guide
May 7, 2026 - msrc.microsoft.com
Nintendo Shuts Down Fun Faux ‘Pokemon Documentary’ YouTuber Via Copyright Strikes
We all should know by now that Nintendo is incredibly protective of its IP. When it comes to anything having to do with Pokémon specifically, all the more so. While they would tell you that they’re ju...
Techdirt
May 7, 2026 - techdirt.com
Microsoft admits Windows 11 is still built on 90s-era Win32, and no one saw it coming
Microsoft leadership admits they never expected the 30-year-old Win32 API to survive until 2026. But after a decade of failed frameworks and RAM-hogging WebView2 web apps, developers refused to move o...