Back to search
CVE-2025-38495
Published: Jul 28, 2025
Modified: May 11, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: HID: core: ensure the allocated report buffer can contain the reserved report ID When the report ID is not used, the low level transport drivers expect the first byte to be 0. However, currently the allocated buffer not account for that extra byte, meaning that instead of having 8 guaranteed bytes for implement to be working, we only have 7.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 4fa5a7f76cc7b6ac87f57741edd2b124851d119f - < 7228e36c7875e4b035374cf68ca5e44dffa596b2affected 4fa5a7f76cc7b6ac87f57741edd2b124851d119f - < 9f2892f7233a8f1320fe671d0f95f122191bfbcdaffected 4fa5a7f76cc7b6ac87f57741edd2b124851d119f - < 7fa83d0043370003e9a0b46ab7ae8f53b00fab06affected 4fa5a7f76cc7b6ac87f57741edd2b124851d119f - < d3ed1d84a84538a39b3eb2055d6a97a936c108f2affected 4fa5a7f76cc7b6ac87f57741edd2b124851d119f - < fcda39a9c5b834346088c14b1374336b079466c1+3 more versions |
Linux | Linux | affected 3.15unaffected 0 - < 3.15unaffected 5.4.297 - <= 5.4.*unaffected 5.10.241 - <= 5.10.*unaffected 5.15.190 - <= 5.15.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now