Back to search
CVE-2022-49984
Published: Jun 18, 2025
Modified: May 11, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: HID: steam: Prevent NULL pointer dereference in steam_{recv,send}_report It is possible for a malicious device to forgo submitting a Feature Report. The HID Steam driver presently makes no prevision for this and de-references the 'struct hid_report' pointer obtained from the HID devices without first checking its validity. Let's change that.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected c164d6abf3841ffacfdb757c10616f9cb1f67276 - < c20d03b82a2e3ddbb555dad4d4f3374a9763222caffected c164d6abf3841ffacfdb757c10616f9cb1f67276 - < fa2b822d86be5b5ad54fe4fa2daca464e71ff90aaffected c164d6abf3841ffacfdb757c10616f9cb1f67276 - < dc815761948ab5b8c94db6cb53c95103588f16aeaffected c164d6abf3841ffacfdb757c10616f9cb1f67276 - < 989560b6d9e00d99e07bc33067fa1c770994bf4daffected c164d6abf3841ffacfdb757c10616f9cb1f67276 - < dee1e51b54794e90763e70a3c78f27ba4fa930ec+1 more versions |
Linux | Linux | affected 4.18unaffected 0 - < 4.18unaffected 4.19.257 - <= 4.19.*unaffected 5.4.212 - <= 5.4.*unaffected 5.10.141 - <= 5.10.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now