legacy code Archives

Winsage

May 29, 2026

Microsoft admits modern Windows 11 apps actually resize worse than the old ones, fix coming this summer

Microsoft is working on a solution to address the black tearing issue during window resizing in WinUI 3 applications on Windows 11, with a rollout expected to begin this summer. March Rogers, Microsoft’s Partner Director of Design, confirmed that the Windows team is testing smooth resizing code on native inbox applications before extending the update to the Windows App SDK. The transition to WinUI 3 aims to replace inefficient web applications and improve user experience, with significant components like the Start menu and system-level dialog boxes being upgraded to WinUI 3. Additionally, Microsoft has launched Windows App SDK 2.0 to encourage third-party developers to adopt native app development, addressing previous issues such as bugs and lack of visual features.

Winsage

May 29, 2026

Microsoft admits modern Windows 11 apps actually resize worse than the old ones, fix coming this summer

Microsoft is working to improve the user experience of WinUI 3 applications by addressing the issue of black tearing during window resizing. A fix is planned to be rolled out over the summer, as confirmed by March Rogers, Microsoft’s Partner Director of Design. Currently, WinUI 3 apps exhibit noticeable tearing during resizing, unlike UWP applications that resize smoothly. The Windows team is testing the smooth resizing code on native inbox apps before its broader rollout. Additionally, Microsoft is transitioning away from web-based architectures to enhance native app development, with plans to migrate the Windows 11 Start menu and system-level dialog boxes to WinUI 3. The company aims to rebuild trust with third-party developers through the Windows App SDK 2.0, which introduces new features and simplifies the development process for native applications.

AppWizard

May 28, 2026

Microsoft Retires Outlook Lite App Affecting 10 Million Android Users

Microsoft has officially decommissioned its Outlook Lite application for Android, affecting over 10 million users globally. The lightweight email client was designed for resource-constrained smartphones and slow mobile networks but has been phased out in favor of the standard Outlook Mobile app, which requires significantly more storage and processing power. Existing user data remains secure in the cloud, but the transition raises concerns about digital inclusion, particularly for users in emerging markets with limited access to high-end smartphones and reliable internet. The standard app's increased data demands may impose financial burdens on users in regions with expensive mobile data. Microsoft aims to consolidate its software for improved security and efficiency, following a trend among other tech companies to retire similar "Lite" applications. Digital rights advocates warn that this shift could exacerbate the digital divide, particularly in rural areas lacking robust internet connectivity.

Tech Optimizer

May 20, 2026

PoC Exploit Released for 20-Year Old PostgreSQL RCE Vulnerability

A proof-of-concept exploit has been developed for CVE-2026-2005, a remote code execution vulnerability in the pgcrypto extension of PostgreSQL. This vulnerability, stemming from legacy code, allows attackers to trigger a heap-based buffer overflow through specially crafted PGP messages, enabling arbitrary memory read and write operations. Successful exploitation can escalate privileges to PostgreSQL superuser status and execute commands on the operating system. The exploit targets PostgreSQL instances compiled from a specific vulnerable commit and circumvents protections like Address Space Layout Randomization (ASLR). It involves corrupting heap memory structures, leading to a controlled pointer leak that reveals the heap layout. Security researcher Varik Matevosyan has published the PoC on GitHub, demonstrating the exploitation process. The exploit requires a compatible PostgreSQL binary and utilizes Python-based tools for interaction. Organizations are advised to review their PostgreSQL deployments, disable unnecessary extensions, and apply security updates to mitigate risks.

Tech Optimizer

May 19, 2026

20-Year-Old PostgreSQL Flaw Gets Public PoC Exploit for Remote Code Execution

A proof-of-concept exploit for CVE-2026-2005 has been released, highlighting a significant vulnerability in the PostgreSQL pgcrypto extension that allows for remote code execution (RCE). This flaw, rooted in legacy code for nearly 20 years, enables attackers to escalate privileges and execute arbitrary commands on compromised servers. The vulnerability is found in the PGP session key parsing logic of the pgcrypto module and involves a heap-based buffer overflow, granting attackers arbitrary read and write access to memory. The exploit, shared by researcher “var77” on GitHub, demonstrates a multi-stage process that bypasses modern security measures like Address Space Layout Randomization (ASLR) using specially crafted PGP messages. The attack involves several steps, including heap pointer leakage, arbitrary memory read, identification of executable memory regions, and privilege escalation to the PostgreSQL superuser level, ultimately allowing the execution of OS-level commands. The vulnerability affects PostgreSQL deployments with the pgcrypto extension enabled, particularly those using vulnerable code versions. Successful exploitation can lead to full database compromise, unauthorized data access or modification, and potential lateral movement within networks. Organizations are advised to update PostgreSQL, restrict pgcrypto usage, limit user privileges, and monitor for unusual activity to mitigate risks.

Winsage

May 11, 2026

Microsoft denies Windows 11 CPU boost trick is a lazy fix, says Apple does this and you love it

The Low Latency Profile feature in Windows 11 temporarily increases CPU frequency to improve responsiveness for high-priority tasks, benefiting even low-powered virtual machines. It is currently available in Windows 11 Insider builds and aims to optimize performance with minimal impact on battery life and thermal performance. Critics have labeled it a "band-aid" solution for a bloated operating system, while Microsoft’s VP Scott Hanselman defended it as a standard practice in modern operating systems. He noted that the feature is particularly effective on ARM architecture, such as Qualcomm's Snapdragon chips, and explained that the complexity of contemporary Start menus requires more processing power than older versions. Microsoft is working to streamline the Start menu while also enhancing performance through the Low Latency Profile.

Winsage

May 8, 2026

Microsoft CTO confesses that 30-year-old code from the mid-90s still forms the bedrock of Windows 11 — ancient Win32 API still the backbone, but CTO says it’s ‘more relevant than ever in 2026’

Mark Russinovich, the Chief Technical Officer of Microsoft Azure, revealed that Windows 11 relies on a significant amount of legacy code from the 1990s, particularly the Win32 framework. He acknowledged the challenges posed by this legacy software while noting its continued relevance as we approach 2026. Russinovich reflected on past attempts to update the Windows API, such as WinRT, which did not meet expectations. He also highlighted that Win32 has been crucial in developing tools like Sysmon and ZoomIt, created in 1996, which remain relevant in the context of Windows 11 and PowerToys.

Winsage

May 7, 2026

Microsoft is working on major performance boost for Windows 11 that will speed up app launches and common actions by automatically maxing out CPU in short bursts

Microsoft is developing a performance enhancement feature for Windows 11 called the "Low Latency Profile," which temporarily increases CPU frequency for 1 to 3 seconds during high-priority tasks. This feature is currently being tested in the Windows Insider Program and is part of the broader Windows K2 initiative aimed at improving system responsiveness. The Low Latency Profile operates automatically and does not currently offer a manual toggle for users. The impact on battery life and thermal performance is minimal, and the feature is still in early testing with ongoing refinements expected.

Winsage

May 7, 2026

Windows 11 still runs on code from the 1990s, Microsoft admits

Windows 11 relies on the Win32 API, a legacy system dating back to Windows 95, for core functionalities like right-clicking and launching applications. Microsoft’s Chief Technology Officer, Mark Russinovich, noted that the continued relevance of Win32 was unexpected, as few anticipated it would still be a primary interface in 2026. Despite attempts to modernize the Windows API with initiatives like WinRT, Win32 remains integral to many Windows operations. The separation between Win32 applications and web technologies has complicated the transition to a new API framework. Additionally, tools from Microsoft's past, such as Sysinternals, Sysmon, and ZoomIt, continue to play important roles in Windows management.