Linux Kernel HID pidff NULL Deref due to Conditional Bit Clearing
CVE-2026-23349 Published on March 25, 2026
HID: pidff: Fix condition effect bit clearing
In the Linux kernel, the following vulnerability has been resolved:
HID: pidff: Fix condition effect bit clearing
As reported by MPDarkGuy on discord, NULL pointer dereferences were
happening because not all the conditional effects bits were cleared.
Properly clear all conditional effect bits from ffbit
Products Associated with CVE-2026-23349
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version 7f3d7bc0df4bdc23d31cf0f90b6e20c45129465e and below d1edc027a4b0bb4c7a2670b530590b4df6177011 is affected.
- Version 7f3d7bc0df4bdc23d31cf0f90b6e20c45129465e and below ef0e669dbceaf3d7bb4ae0b235fa61feabd92b0b is affected.
- Version 7f3d7bc0df4bdc23d31cf0f90b6e20c45129465e and below 97d5c8f5c09a604c4873c8348f58de3cea69a7df is affected.
- Version 6.18 is affected.
- Before 6.18 is unaffected.
- Version 6.18.17, <= 6.18.* is unaffected.
- Version 6.19.7, <= 6.19.* is unaffected.
- Version 7.0-rc3, <= * is unaffected.