CVE-2026-31522

Summary

In the Linux kernel, the following vulnerability has been resolved:

HID: magicmouse: avoid memory leak in magicmouse_report_fixup()

The magicmouse_report_fixup() function was returning a newly kmemdup()-allocated buffer, but never freeing it.

The caller of report_fixup() does not take ownership of the returned pointer, but it is permitted to return a sub-portion of the input rdesc, whose lifetime is managed by the caller.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxe6ad399596bd234be4722022146e33e15c7e424d < 579c4c9857acdc8380fa99803f355f878bd766cbaffected
LinuxLinux0b91b4e4dae63cd43871fc2012370b86ee588f91 < d84c21aabaab517b9aaf9bc1d785922cb9db2f31affected
LinuxLinux0b91b4e4dae63cd43871fc2012370b86ee588f91 < 7edfe4346b052b708645d0acc0f186425766b785affected
LinuxLinux0b91b4e4dae63cd43871fc2012370b86ee588f91 < 79e5dcc95d9abed6f8203cfd529f4ec71f0e505daffected
LinuxLinux0b91b4e4dae63cd43871fc2012370b86ee588f91 < 136f605e246b4bfe7ac2259471d1ff814aed0084affected
LinuxLinux0b91b4e4dae63cd43871fc2012370b86ee588f91 < fa95b0146358b49f9858139b67314591fd5871b0affected
LinuxLinux0b91b4e4dae63cd43871fc2012370b86ee588f91 < 91e8c6e601bdc1ccdf886479b6513c01c7e51c2caffected
LinuxLinuxc394bd1bc8537e61593b6b6799e01495c7cf9008affected
LinuxLinux5.15.17 < 5.15.203affected
LinuxLinux5.16.3 < 5.17affected
LinuxLinux5.17affected
LinuxLinux0 < 5.17unaffected
LinuxLinux5.15.203 <= 5.15.*unaffected
LinuxLinux6.1.168 <= 6.1.*unaffected
LinuxLinux6.6.131 <= 6.6.*unaffected
LinuxLinux6.12.80 <= 6.12.*unaffected
LinuxLinux6.18.21 <= 6.18.*unaffected
LinuxLinux6.19.11 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References