Back to search
CVE-2026-43136
Published: May 6, 2026
Modified: May 11, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: HID: logitech-hidpp: Check maxfield in hidpp_get_report_length() Do not crash when a report has no fields. Fake USB gadgets can send their own HID report descriptors and can define report structures without valid fields. This can be used to crash the kernel over USB.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected fe3ee1ec007bf7b10d7c02814d4b8fbe7d9bb435 - < ae81fac9ce81917817d787e6b74e68482d99bdf2affected fe3ee1ec007bf7b10d7c02814d4b8fbe7d9bb435 - < 2dc023dbc11b8dfa8afa63242762acd8cddcad03affected fe3ee1ec007bf7b10d7c02814d4b8fbe7d9bb435 - < 7f59999fcd699af06ad2aef446a635ea6aa87db3affected fe3ee1ec007bf7b10d7c02814d4b8fbe7d9bb435 - < b74bf7d0d01fa9b53653f58c29aa00772121f6e9affected fe3ee1ec007bf7b10d7c02814d4b8fbe7d9bb435 - < f1ceaaf93ea32d0f2b95c95f784ee155962c52ad+3 more versions |
Linux | Linux | affected 5.2unaffected 0 - < 5.2unaffected 5.10.252 - <= 5.10.*unaffected 5.15.202 - <= 5.15.*unaffected 6.1.165 - <= 6.1.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now