Linux Kernel HID-BPF Buffer Overflow in hid_hw_request
CVE-2026-31401 Published on April 3, 2026
HID: bpf: prevent buffer overflow in hid_hw_request
In the Linux kernel, the following vulnerability has been resolved:
HID: bpf: prevent buffer overflow in hid_hw_request
right now the returned value is considered to be always valid. However,
when playing with HID-BPF, the return value can be arbitrary big,
because it's the return value of dispatch_hid_bpf_raw_requests(), which
calls the struct_ops and we have no guarantees that the value makes
sense.
Products Associated with CVE-2026-31401
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version 8bd0488b5ea58655ad6fdcbe0408ef49b16882b1 and below d6efaa50af62fb0790dd1fd4e7e5506b46312510 is affected.
- Version 8bd0488b5ea58655ad6fdcbe0408ef49b16882b1 and below 73c5b5aea1c443239c8cb4191b4af7a4bd6fd7b1 is affected.
- Version 8bd0488b5ea58655ad6fdcbe0408ef49b16882b1 and below eb57dae20fdf6f3069cdc07821fa3bb46de381d7 is affected.
- Version 8bd0488b5ea58655ad6fdcbe0408ef49b16882b1 and below 2b658c1c442ec1cd9eec5ead98d68662c40fe645 is affected.
- Version 6.11 is affected.
- Before 6.11 is unaffected.
- Version 6.12.78, <= 6.12.* is unaffected.
- Version 6.18.20, <= 6.18.* is unaffected.
- Version 6.19.10, <= 6.19.* is unaffected.
- Version 7.0-rc5, <= * is unaffected.