HID: playstation: Clamp num_touch_reports

MITRE NVD CVE.ORG JSON API Print: PDF PDF

Summary

CVECVE-2026-46232
StatePUBLISHED
AssignerLinux
Source PriorityCVE Program / NVD first with legacy fallback
Published2026-05-28 10:16:38 UTC
Updated2026-05-28 13:44:01 UTC
DescriptionIn the Linux kernel, the following vulnerability has been resolved: HID: playstation: Clamp num_touch_reports A device would never lie about the number of touch reports would it? If it does the loop in dualshock4_parse_report will read off the end of the touch_reports array, up to about 2 KiB for the maximum number of 256 loop iteraions. The data that is read is emitted via evdev if the DS4_TOUCH_POINT_INACTIVE bit happens to be set. Protect against this by clamping the num_touch_reports value provided by the device to the maximum size of the touch_reports array.

Vendor Declared Affected Products

SourceVendorProductVersionPlatforms
CNA Linux Linux affected 752038248808a7ff176bbdb668f19ae7d2a9816b 0bc4cf1a6ba00fb8c074531b179bc7b97502fbc4 git Not specified
CNA Linux Linux affected 752038248808a7ff176bbdb668f19ae7d2a9816b 9c031b24aed6733b6dcc5d98527875b8654a04e9 git Not specified
CNA Linux Linux affected 752038248808a7ff176bbdb668f19ae7d2a9816b 7812694752a5f295eaa05a093b90a2c332666051 git Not specified
CNA Linux Linux affected 752038248808a7ff176bbdb668f19ae7d2a9816b 208f6d5b1dfd6399bc6af9e11f27f1f496243ed0 git Not specified
CNA Linux Linux affected 752038248808a7ff176bbdb668f19ae7d2a9816b cac61b58a3b6340c52afa06bb15eac033158db2f git Not specified
CNA Linux Linux affected 6.2 Not specified
CNA Linux Linux unaffected 6.2 semver Not specified
CNA Linux Linux unaffected 6.6.140 6.6.* semver Not specified
CNA Linux Linux unaffected 6.12.90 6.12.* semver Not specified
CNA Linux Linux unaffected 6.18.32 6.18.* semver Not specified
CNA Linux Linux unaffected 7.0.9 7.0.* semver Not specified
CNA Linux Linux unaffected 7.1-rc4 * original_commit_for_fix Not specified

References

ReferenceSourceLinkTags
git.kernel.org/stable/c/0bc4cf1a6ba00fb8c074531b179bc7b97502fbc4 416baaa9-dc9f-4396-8d5f-8c081fb06d67 git.kernel.org
git.kernel.org/stable/c/cac61b58a3b6340c52afa06bb15eac033158db2f 416baaa9-dc9f-4396-8d5f-8c081fb06d67 git.kernel.org
git.kernel.org/stable/c/7812694752a5f295eaa05a093b90a2c332666051 416baaa9-dc9f-4396-8d5f-8c081fb06d67 git.kernel.org
git.kernel.org/stable/c/9c031b24aed6733b6dcc5d98527875b8654a04e9 416baaa9-dc9f-4396-8d5f-8c081fb06d67 git.kernel.org
git.kernel.org/stable/c/208f6d5b1dfd6399bc6af9e11f27f1f496243ed0 416baaa9-dc9f-4396-8d5f-8c081fb06d67 git.kernel.org
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report