Today's Top Windows System Articles for 2026-05-12
Articles for the IT Professional. Each day we look at roughly 100 sites for Windows articles and bring them here.
Updated on May 11, 2026 at 7:14:26 PM GMT
Microsoft denies Windows 11 CPU boost trick is a lazy fix, says Apple does this and you love it
After the internet criticized Windows 11's new Low Latency CPU boost as a lazy band aid fix, Microsoft VP Scott Hanselman stepped in to set the record straight. Here is why temporarily maxing out your...
Windows Latest
May 10, 2026 - windowslatest.com
CVE-2026-42257 net-imap: Command Injection via "raw" arguments to multiple commands
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-42258 net-imap: Command Injection via unvalidated Symbol inputs
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-42256 net-imap: Denial of service via high iteration count for `SCRAM-*` authentication
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-42246 net-imap vulnerable to STARTTLS stripping via invalid response timing
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-45186
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-7261 SoapServer session-persisted object use-after-free via SOAP header fault
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-7258 Out-of-bounds read in urldecode() on NetBSD
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-6722 Use-After-Free in SOAP using Apache map
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-6735 XSS within PHP-FPM status endpoint
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-7262 NULL pointer dereference in SOAP apache:Map decoder with missing
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-14179 SQL injection in pdo_firebird via NUL bytes in quoted strings
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-7568 Signed integer overflow in metaphone()
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-7259 Null pointer dereference in php_mb_check_encoding() via mb_ereg_search_init()
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2022-4543 A flaw named "EntryBleed" was found in the Linux Kernel Page Table Isolation (KPTI). This issue could allow a local attacker to leak KASLR base via prefetch side-channels based on TLB timing for Intel systems.
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-23848 In the Linux kernel through 6.7.1, there is a use-after-free in cec_queue_msg_fh, related to drivers/media/cec/core/cec-adap.c and drivers/media/cec/core/cec-api.c.
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-23394 af_unix: Give up GC if MSG_PEEK intervened.
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-39789 crypto: x86/aegis - Add missing error checks
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-21723 scsi: mpi3mr: Fix possible crash when setting up bsg fails
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-39833 mISDN: hfcpci: Fix warning when deleting uninitialized timer
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-58089 btrfs: fix double accounting race when btrfs_run_delalloc_range() failed
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-25740 A memory leak flaw was found in the UBI driver in drivers/mtd/ubi/attach.c in the Linux kernel through 6.7.4 for UBI_IOCATT, because kobj->name is not released.
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31677 crypto: af_alg - limit RX SG extraction by receive buffer budget
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-39810 bnxt_en: Fix memory corruption when FW resources change during ifdown
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-42064 drm/amd/display: Skip pipe if the pipe idx not set properly
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2023-52624 drm/amd/display: Wake DMCUB before executing GPINT commands
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31688 driver core: enforce device_lock for driver_match_device()
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-39851 vxlan: Fix NPD when refreshing an FDB entry with a nexthop object
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-26756 md: Don't register sync_thread for reshape directly
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31499 Bluetooth: L2CAP: Fix deadlock in l2cap_conn_del()
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-39862 wifi: mt76: mt7915: fix list corruption after hardware restart
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-42066 drm/xe: Fix potential integer overflow in page size calculation
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-21786 workqueue: Put the pwq after detaching the rescuer from the pool
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31692 rtnetlink: add missing netlink_ns_capable() check for peer netns
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-39850 vxlan: Fix NPD in {arp,neigh}_reduce() when using nexthop objects
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-42081 drm/xe/xe_devcoredump: Check NULL before assignments
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-21714 RDMA/mlx5: Fix implicit ODP use after free
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31706 ksmbd: validate num_aces and harden ACE walk in smb_inherit_dacl()
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-39859 ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-42065 drm/xe: Add a NULL check in xe_ttm_stolen_mgr_init
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-57857 RDMA/siw: Remove direct link to net_device
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31723 usb: gadget: f_subset: Fix net_device lifecycle with device_move
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-21693 mm: zswap: properly synchronize freeing resources during CPU hotunplug
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31724 usb: gadget: f_eem: Fix net_device lifecycle with device_move
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-21833 iommu/vt-d: Avoid use of NULL after WARN_ON_ONCE
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-43053 xfs: close crash window in attr dabtree inactivation
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-26758 md: Don't ignore suspended array in md_check_recovery()
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-43048 HID: core: Mitigate potential OOB by removing bogus memset()
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-26757 md: Don't ignore read-only array in md_check_recovery()
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31777 ALSA: ctxfi: Check the error for index mapping
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-43901 drm/amd/display: Fix NULL pointer dereference for DTN log in DCN401
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31722 usb: gadget: f_rndis: Fix net_device lifecycle with device_move
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-26672 drm/amdgpu: Fix variable 'mca_funcs' dereferenced before NULL check in 'amdgpu_mca_smu_get_mca_entry()'
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-38608 net/mlx5e: Fix netif state handling
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-43036 net: use skb_header_pointer() for TCPv4 GSO frag_off check
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-21927 nvme-tcp: fix potential memory corruption in nvme_tcp_recv_pdu()
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-21949 LoongArch: Set hugetlb mmap base address aligned with pmd size
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31707 ksmbd: validate response sizes in ipc_validate_msg()
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-43872 RDMA/hns: Fix soft lockup under heavy CEQE load
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31725 usb: gadget: f_ecm: Fix net_device lifecycle with device_move
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-21961 eth: bnxt: fix truesize for mb-xdp-pass case
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-37860 sfc: fix NULL dereferences in ef100_process_design_param()
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-43049 HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-43819 kvm: s390: Reject memory region operations for ucontrol VMs
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-43042 mpls: add seqcount to protect the platform_label{,s} pair
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-22070 fs/9p: fix NULL pointer dereference on mkdir
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-1151 Kernel: stack overflow problem in open vswitch kernel module leading to dos
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-37861 scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31771 Bluetooth: hci_event: move wake reason storage into validated event handlers
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-43052 wifi: mac80211: check tdls flag in ieee80211_tdls_oper
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-41045 bpf: Defer work in bpf_timer_cancel_and_free
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31709 smb: client: validate the whole DACL before rewriting it in cifsacl
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-22109 ax25: Remove broken autobind
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31712 ksmbd: require minimum ACE size in smb_check_perm_dacl()
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-21825 bpf: Cancel the running bpf_timer through kworker for PREEMPT_RT
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-38595 net/mlx5: Fix peer devlink set for SF representor devlink port
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-43010 bpf: Reject sleepable kprobe_multi programs at attach time
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-22113 ext4: avoid journaling sb update on error if journal is destroying
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-21907 mm: memory-failure: update ttu flag inside unmap_poisoned_folio
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-43019 Bluetooth: hci_conn: fix potential UAF in set_cig_params_sync
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-21768 net: ipv6: fix dst ref loops in rpl, seg6 and ioam6 lwtunnels
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-22124 md/md-bitmap: fix wrong bitmap_limit for clustermd when write sb
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31729 usb: typec: ucsi: validate connector number in ucsi_notify_common()
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-41082 nvme-fabrics: use reserved tag for reg read/write command
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-46730 drm/amd/display: Ensure array index tg_inst won't be -1
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-23135 RISC-V: KVM: Teardown riscv specific bits after kvm_exit
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-43009 bpf: Fix incorrect pruning due to atomic fetch precision tracking
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-22108 bnxt_en: Mask the bd_cnt field in the TX BD properly
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-46727 drm/amd/display: Add otg_master NULL check within resource_log_pipe_topology_update
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-37747 perf: Fix hang while freeing sigtrap event
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-31715 f2fs: fix UAF caused by decrementing sbi->nr_pages[] in f2fs_write_end_io()
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-57809 PCI: imx6: Fix suspend/resume support on i.MX6QDL
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-37750 smb: client: fix UAF in decryption with multichannel
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-43073 x86-64: rename misleadingly named '__copy_user_nocache()' function
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-40139 smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set().
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-53219 virtiofs: use pages instead of pointer for kernel direct IO
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-43125 dlm: validate length in dlm_search_rsb_tree
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2024-46834 ethtool: fail closed if we can't get max channel used in indirection tables
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2025-40146 blk-mq: fix potential deadlock while nr_requests grown
Information published.
MSRC Security Update Guide
May 11, 2026 - msrc.microsoft.com
CVE-2026-43248 vhost: move vdpa group bound check to vhost_vdpa
Information published.