Back to search
CVE-2025-38494
Published: Jul 28, 2025
Modified: May 11, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hid_hw_raw_request hid_hw_raw_request() is actually useful to ensure the provided buffer and length are valid. Directly calling in the low level transport driver function bypassed those checks and allowed invalid paramto be used.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 4fa5a7f76cc7b6ac87f57741edd2b124851d119f - < dd8e8314f2ce225dade5248dcfb9e2ac0edda624affected 4fa5a7f76cc7b6ac87f57741edd2b124851d119f - < 40e25aa7e4e0f2440c73a683ee448e41c7c344edaffected 4fa5a7f76cc7b6ac87f57741edd2b124851d119f - < f10923b8d32a473b229477b63f23bbd72b1e9910affected 4fa5a7f76cc7b6ac87f57741edd2b124851d119f - < a62a895edb2bfebffa865b5129a66e3b4287f34faffected 4fa5a7f76cc7b6ac87f57741edd2b124851d119f - < 0e5017d84d650ca0eeaf4a3fe9264c5dbc886b81+3 more versions |
Linux | Linux | affected 3.15unaffected 0 - < 3.15unaffected 5.4.297 - <= 5.4.*unaffected 5.10.241 - <= 5.10.*unaffected 5.15.190 - <= 5.15.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now