PT-2025-37951 · Linux+6 · Linux Kernel+6

Published

2025-01-01

·

Updated

2026-05-07

·

CVE-2025-39806

CVSS v3.1

7.1

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.15.0-00005-gec5d573d83f4
Description A flaw exists in the Linux kernel related to handling HID (Human Interface Device) multitouch input. A malicious HID device can trigger a slab out-of-bounds access within the mt report fixup() function by providing a report descriptor smaller than 607 bytes. This occurs because the function attempts to access byte offset 607 of the descriptor without verifying its size, leading to a potential memory corruption issue.
Recommendations Update the Linux kernel to version 6.15.0-00005-gec5d573d83f4 or later to address this issue.

Exploit

Fix

Out of bounds Read

Weakness Enumeration

CWE-125

Related Identifiers

ALSA-2026:0445
ALSA-2026:0453
AZL-74700
BDU:2025-15686
CVE-2025-39806
DLA-4328-1
DSA-6008-1
DSA-6009-1
ECHO-0391-2CAF-7961
OESA-2025-2551
OESA-2025-2552
OESA-2025-2556
OPENSUSE-SU-2025:20081-1
RHSA-2026:0271
RHSA-2026:0445
RHSA-2026:0453
RHSA-2026:0457
SUSE-SU-2025:03600-1
SUSE-SU-2025:03634-1
SUSE-SU-2025:20851-1
SUSE-SU-2025:20861-1
SUSE-SU-2025:20870-1
SUSE-SU-2025:20898-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025:3751-1
SUSE-SU-2025:4057-1
SUSE-SU-2025:4132-1
SUSE-SU-2025:4141-1
USN-7909-1
USN-7909-2
USN-7909-3
USN-7909-4
USN-7909-5
USN-7910-1
USN-7910-2
USN-7933-1
USN-7938-1
USN-8095-1
USN-8095-2
USN-8095-3
USN-8095-4
USN-8095-5
USN-8100-1
USN-8125-1
USN-8126-1
USN-8165-1
USN-8261-1

Affected Products

Astra Linux
Debian
Linuxmint
Linux Kernel
Rocky Linux
Suse
Ubuntu