CVE-2026-23349

Summary

In the Linux kernel, the following vulnerability has been resolved:

HID: pidff: Fix condition effect bit clearing

As reported by MPDarkGuy on discord, NULL pointer dereferences were happening because not all the conditional effects bits were cleared.

Properly clear all conditional effect bits from ffbit

Affected Software

VendorProductVersion RangeStatus
LinuxLinux7f3d7bc0df4bdc23d31cf0f90b6e20c45129465e < d1edc027a4b0bb4c7a2670b530590b4df6177011affected
LinuxLinux7f3d7bc0df4bdc23d31cf0f90b6e20c45129465e < ef0e669dbceaf3d7bb4ae0b235fa61feabd92b0baffected
LinuxLinux7f3d7bc0df4bdc23d31cf0f90b6e20c45129465e < 97d5c8f5c09a604c4873c8348f58de3cea69a7dfaffected
LinuxLinux6.18affected
LinuxLinux0 < 6.18unaffected
LinuxLinux6.18.17 <= 6.18.*unaffected
LinuxLinux6.19.7 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References