CVE-2025-37862
Published: May 9, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix null pointer dereference in pidff_find_fields This function triggered a null pointer dereference if used to search for a report that isn't implemented on the device. This happened both for optional and required reports alike. The same logic was applied to pidff_find_special_field and although pidff_init_fields should return an error earlier if one of the required reports is missing, future modifications could change this logic and resurface this possible null pointer dereference again. LKML bug report: https://lore.kernel.org/all/CAL-gK7f5=R0nrrQdPtaZZr1fd-cdAMbDMuZ_NLA8vM0SX+nGSw@mail.gmail.com
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 224ee88fe39564358ec99b46bf3ee6e6999ae17d - < 44a1b8b2027afbb37e418993fb23561bdb9efb38affected 224ee88fe39564358ec99b46bf3ee6e6999ae17d - < d230becb9d38b7325c5c38d051693e4c26b1829baffected 224ee88fe39564358ec99b46bf3ee6e6999ae17d - < 6b4449e4f03326fbd2136e67bfcc1e6ffe61541daffected 224ee88fe39564358ec99b46bf3ee6e6999ae17d - < ddb147885225d768025f6818df533d30edf3e102affected 224ee88fe39564358ec99b46bf3ee6e6999ae17d - < be706a48bb7896d4130edc82811233d1d62158e7+4 more versions |
Linux | Linux | affected 2.6.19unaffected 0 - < 2.6.19unaffected 5.4.293 - <= 5.4.*unaffected 5.10.237 - <= 5.10.*unaffected 5.15.181 - <= 5.15.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now