Medium severity5.5NVD Advisory· Published Mar 25, 2026· Updated Apr 24, 2026
CVE-2026-23382
CVE-2026-23382
Description
In the Linux kernel, the following vulnerability has been resolved:
HID: Add HID_CLAIMED_INPUT guards in raw_event callbacks missing them
In commit 2ff5baa9b527 ("HID: appleir: Fix potential NULL dereference at raw event handle"), we handle the fact that raw event callbacks can happen even for a HID device that has not been "claimed" causing a crash if a broken device were attempted to be connected to the system.
Fix up the remaining in-tree HID drivers that forgot to add this same check to resolve the same issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
11cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=2.6.35.1,<5.10.253
- cpe:2.3:o:linux:linux_kernel:2.6.35:-:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc7:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
8- git.kernel.org/stable/c/20864e3e41c74cda253a9fa6b6fe093c1461a6a9nvdPatch
- git.kernel.org/stable/c/575122cd6569c4c4aa13c4c9958fea506724c788nvdPatch
- git.kernel.org/stable/c/6e330889e6c8db99f04d4feb861d23de4e8fbb13nvdPatch
- git.kernel.org/stable/c/892dbaf46bb738dacf1fa663eadb3712c85868f0nvdPatch
- git.kernel.org/stable/c/ac83b0d91a3f4f0c012ba9c85fb99436cddb1208nvdPatch
- git.kernel.org/stable/c/b48284d7f0f76023b215a3409cdc989b5081eadfnvdPatch
- git.kernel.org/stable/c/de316c1edf15bc30ff5e0d4c7b37c70fd41cf319nvdPatch
- git.kernel.org/stable/c/ecfa6f34492c493a9a1dc2900f3edeb01c79946bnvdPatch
News mentions
0No linked articles in our index yet.