High severity7.8NVD Advisory· Published May 6, 2026· Updated Jun 1, 2026
CVE-2026-43111
CVE-2026-43111
Description
In the Linux kernel, the following vulnerability has been resolved:
HID: roccat: fix use-after-free in roccat_report_event
roccat_report_event() iterates over the device->readers list without holding the readers_lock. This allows a concurrent roccat_release() to remove and free a reader while it's still being accessed, leading to a use-after-free.
Protect the readers list traversal with the readers_lock mutex.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
15cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=2.6.35,<6.6.136
- cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc7:*:*:*:*:*:*
- (no CPE)
- osv-coords6 versionspkg:apk/chainguard/linux-aws-6.18pkg:apk/chainguard/linux-azure-6.18pkg:apk/chainguard/linux-gcp-6.18pkg:apk/chainguard/linux-qemu-6.18pkg:apk/chainguard/linux-qemu-6.18-bootc-boot-installedpkg:apk/chainguard/linux-vmware-6.18
< 6.18.31-r0+ 5 more
- (no CPE)range: < 6.18.31-r0
- (no CPE)range: < 6.18.24-r1
- (no CPE)range: < 6.18.31-r0
- (no CPE)range: < 6.18.31-r0
- (no CPE)range: < 6.18.31-r0
- (no CPE)range: < 6.18.31-r0
Patches
Vulnerability mechanics
References
8- git.kernel.org/stable/c/36bb2d0b915014bbdc5044982b31b57b78045b93nvdPatch
- git.kernel.org/stable/c/bca0b595e15450dd66b1153c76c4ef1087ee011bnvdPatch
- git.kernel.org/stable/c/d802d848308b35220f21a8025352f0c0aba15c12nvdPatch
- git.kernel.org/stable/c/e16a6d11bd77b81632165f02cf0d5946df74b3b7nvdPatch
- git.kernel.org/stable/c/e6a445513fbc6a0329d2d5ff375b6725750ec5a6nvdPatch
- git.kernel.org/stable/c/181ea51ab0f6370842c5b49cfb86824253a1189envd
- git.kernel.org/stable/c/20dca865460f7943cf70afca274b60dac371f546nvd
- git.kernel.org/stable/c/441689e3103694caa3e2d62b7d57c7bccefa5e37nvd
News mentions
0No linked articles in our index yet.