<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"><channel><title>Kaluche research feed</title><description>Vulnerability research, AI, Windows and Red Teaming.</description><link>https://kaluche.github.io/</link><language>en</language><item><title>CVE-2026-41089: Netlogon&apos;s WCHAR-count stack overflow</title><link>https://kaluche.github.io/research/msrc/2026-05/cve-2026-41089/</link><guid isPermaLink="true">https://kaluche.github.io/research/msrc/2026-05/cve-2026-41089/</guid><description>A Netlogon patch diff and live CLDAP trace show how a byte budget became a WCHAR count, overflowing a domain controller&apos;s stack response buffer.</description><pubDate>Sat, 18 Jul 2026 00:00:00 GMT</pubDate></item><item><title>CVE-2026-47291: the HTTP.sys reference-buffer capacity wrap</title><link>https://kaluche.github.io/research/msrc/2026-06/cve-2026-47291/</link><guid isPermaLink="true">https://kaluche.github.io/research/msrc/2026-06/cve-2026-47291/</guid><description>A patch diff of http.sys exposes a 16-bit capacity wrap that turns a reference-array resize into a kernel pool overflow.</description><pubDate>Sat, 18 Jul 2026 00:00:00 GMT</pubDate></item><item><title>CVE-2026-56190: tracking an RDP clipboard lifetime bug through the patch</title><link>https://kaluche.github.io/research/msrc/2026-07/cve-2026-56190/</link><guid isPermaLink="true">https://kaluche.github.io/research/msrc/2026-07/cve-2026-56190/</guid><description>A static patch diff of rdpcorets.dll shows how Microsoft closed a manager teardown gap affecting CLIPRDR proxy streams and data objects.</description><pubDate>Fri, 17 Jul 2026 00:00:00 GMT</pubDate></item></channel></rss>