Fluid Attacks Database

Description

In the Linux kernel, the following vulnerability has been resolved: HID: multitouch: Check to ensure report responses match the request It is possible for a malicious (or clumsy) device to respond to a specific report's feature request using a completely different report ID. This can cause confusion in the HID core resulting in nasty side-effects such as OOB writes. Add a check to ensure that the report ID in the response, matches the one that was requested. If it doesn't, omit reporting the raw event and return early.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
rpm rhel8	kernel	-	-
rpm rhel8	kernel-rt	-	-
debian 13	linux	=6.12.38-1 \|\| =6.12.41-1 \|\| =6.12.43-1 \|\| =6.12.43-1~bpo12+1 \|\| =6.12.48-1 \|\| =6.12.57-1 \|\| =6.12.57-1~bpo12+1 \|\| =6.12.63-1 \|\| =6.12.63-1~bpo12+1 \|\| =6.12.69-1 \|\| =6.12.69-1~bpo12+1 \|\| =6.12.73-1 \|\| =6.12.73-1~bpo12+1 \|\| =6.12.74-1 \|\| =6.12.74-2 \|\| =6.12.74-2~bpo12+1 \|\| =6.12.85-1~bpo12+1 \|\| >=0 <6.12.85-1	6.12.85-1
debian 11	linux	=5.10.103-1 \|\| =5.10.103-1~bpo10+1 \|\| =5.10.106-1 \|\| =5.10.113-1 \|\| =5.10.120-1 \|\| =5.10.120-1~bpo10+1 \|\| =5.10.127-1 \|\| =5.10.127-2 \|\| =5.10.127-2~bpo10+1 \|\| =5.10.136-1 \|\| =5.10.140-1 \|\| =5.10.148-1 \|\| =5.10.149-1 \|\| =5.10.149-2 \|\| =5.10.158-1 \|\| =5.10.158-2 \|\| =5.10.162-1 \|\| =5.10.178-1 \|\| =5.10.178-2 \|\| =5.10.178-3 \|\| =5.10.179-1 \|\| =5.10.179-2 \|\| =5.10.179-3 \|\| =5.10.179-4 \|\| =5.10.179-5 \|\| =5.10.191-1 \|\| =5.10.197-1 \|\| =5.10.205-1 \|\| =5.10.205-2 \|\| =5.10.209-1 \|\| =5.10.209-2 \|\| =5.10.216-1 \|\| =5.10.218-1 \|\| =5.10.221-1 \|\| =5.10.223-1 \|\| =5.10.226-1 \|\| =5.10.234-1 \|\| =5.10.237-1 \|\| =5.10.244-1 \|\| =5.10.247-1 \|\| =5.10.249-1 \|\| =5.10.251-1 \|\| =5.10.251-3 \|\| =5.10.251-4 \|\| =5.10.251-5 \|\| =5.10.46-4 \|\| =5.10.46-5 \|\| =5.10.70-1 \|\| =5.10.70-1~bpo10+1 \|\| =5.10.84-1 \|\| =5.10.92-1 \|\| =5.10.92-1~bpo10+1 \|\| =5.10.92-2 \|\| >=0 <5.10.257-1	5.10.257-1
rpm rhel9	kernel	-	-
rpm rhel9	kernel-rt	-	-
debian 12	linux	=6.1.106-1 \|\| =6.1.106-2 \|\| =6.1.106-3 \|\| =6.1.112-1 \|\| =6.1.115-1 \|\| =6.1.119-1 \|\| =6.1.123-1 \|\| =6.1.124-1 \|\| =6.1.128-1 \|\| =6.1.129-1 \|\| =6.1.133-1 \|\| =6.1.135-1 \|\| =6.1.137-1 \|\| =6.1.139-1 \|\| =6.1.140-1 \|\| =6.1.147-1 \|\| =6.1.148-1 \|\| =6.1.153-1 \|\| =6.1.158-1 \|\| =6.1.159-1 \|\| =6.1.162-1 \|\| =6.1.164-1 \|\| =6.1.27-1 \|\| =6.1.37-1 \|\| =6.1.38-1 \|\| =6.1.38-2 \|\| =6.1.38-2~bpo11+1 \|\| =6.1.38-3 \|\| =6.1.38-4 \|\| =6.1.38-4~bpo11+1 \|\| =6.1.52-1 \|\| =6.1.55-1 \|\| =6.1.55-1~bpo11+1 \|\| =6.1.64-1 \|\| =6.1.66-1 \|\| =6.1.67-1 \|\| =6.1.69-1 \|\| =6.1.69-1~bpo11+1 \|\| =6.1.76-1 \|\| =6.1.76-1~bpo11+1 \|\| =6.1.82-1 \|\| =6.1.85-1 \|\| =6.1.90-1 \|\| =6.1.90-1~bpo11+1 \|\| =6.1.94-1 \|\| =6.1.94-1~bpo11+1 \|\| =6.1.98-1 \|\| =6.1.99-1 \|\| >=0 <6.1.170-1	6.1.170-1
debian 14	linux	=6.12.38-1 \|\| =6.12.41-1 \|\| =6.12.43-1 \|\| =6.12.43-1~bpo12+1 \|\| =6.12.48-1 \|\| =6.12.57-1 \|\| =6.12.57-1~bpo12+1 \|\| =6.12.63-1 \|\| =6.12.63-1~bpo12+1 \|\| =6.12.69-1 \|\| =6.12.69-1~bpo12+1 \|\| =6.12.73-1 \|\| =6.12.73-1~bpo12+1 \|\| =6.12.74-1 \|\| =6.12.74-2 \|\| =6.12.74-2~bpo12+1 \|\| =6.12.85-1 \|\| =6.12.85-1~bpo12+1 \|\| =6.12.86-1 \|\| =6.12.86-1~bpo12+1 \|\| =6.12.88-1 \|\| =6.12.88-1~bpo12+1 \|\| =6.12.90-1 \|\| =6.12.90-1~bpo12+1 \|\| =6.12.90-2 \|\| =6.13.10-1~exp1 \|\| =6.13.11-1~exp1 \|\| =6.13.2-1~exp1 \|\| =6.13.3-1~exp1 \|\| =6.13.4-1~exp1 \|\| =6.13.5-1~exp1 \|\| =6.13.6-1~exp1 \|\| =6.13.7-1~exp1 \|\| =6.13.8-1~exp1 \|\| =6.13.9-1~exp1 \|\| =6.13~rc6-1~exp1 \|\| =6.13~rc7-1~exp1 \|\| =6.14.3-1~exp1 \|\| =6.14.5-1~exp1 \|\| =6.14.6-1~exp1 \|\| =6.15-1~exp1 \|\| =6.15.1-1~exp1 \|\| =6.15.2-1~exp1 \|\| =6.15.3-1~exp1 \|\| =6.15.4-1~exp1 \|\| =6.15.5-1~exp1 \|\| =6.15.6-1~exp1 \|\| =6.15~rc7-1~exp1 \|\| =6.16-1~exp1 \|\| =6.16.1-1~exp1 \|\| =6.16.10-1 \|\| =6.16.11-1 \|\| =6.16.12-1 \|\| =6.16.12-1~bpo13+1 \|\| =6.16.12-2 \|\| =6.16.3-1 \|\| =6.16.3-1~bpo13+1 \|\| =6.16.5-1 \|\| =6.16.6-1 \|\| =6.16.7-1 \|\| =6.16.8-1 \|\| =6.16.9-1 \|\| =6.16~rc7-1~exp1 \|\| =6.17.10-1 \|\| =6.17.11-1 \|\| =6.17.12-1 \|\| =6.17.13-1 \|\| =6.17.13-1~bpo13+1 \|\| =6.17.2-1~exp1 \|\| =6.17.5-1~exp1 \|\| =6.17.6-1 \|\| =6.17.7-1 \|\| =6.17.7-2 \|\| =6.17.8-1 \|\| =6.17.8-1~bpo13+1 \|\| =6.17.9-1 \|\| =6.18.1-1~exp1 \|\| =6.18.10-1 \|\| =6.18.12-1 \|\| =6.18.12-1~bpo13+1 \|\| =6.18.13-1 \|\| =6.18.14-1 \|\| =6.18.15-1 \|\| =6.18.15-1~bpo13+1 \|\| =6.18.2-1~exp1 \|\| =6.18.3-1 \|\| =6.18.5-1 \|\| =6.18.5-1~bpo13+1 \|\| =6.18.8-1 \|\| =6.18.9-1 \|\| =6.18.9-1~bpo13+1 \|\| =6.18~rc4-1~exp1 \|\| =6.18~rc4-1~exp2 \|\| =6.18~rc5-1~exp1 \|\| =6.18~rc6-1~exp1 \|\| =6.18~rc7-1~exp1 \|\| =6.19-1~exp1 \|\| =6.19.10-1 \|\| =6.19.10-1~bpo13+1 \|\| =6.19.11-1 \|\| =6.19.11-1~bpo13+1 \|\| =6.19.2-1~exp1 \|\| =6.19.3-1~exp1 \|\| =6.19.4-1~exp1 \|\| =6.19.5-1~exp1 \|\| =6.19.6-1 \|\| =6.19.6-2 \|\| =6.19.6-2~bpo13+1 \|\| =6.19.8-1 \|\| =6.19.8-1~bpo13+1 \|\| =6.19~rc4-1~exp1 \|\| =6.19~rc5-1~exp1 \|\| =6.19~rc6-1~exp1 \|\| =6.19~rc7-1~exp1 \|\| =6.19~rc8-1~exp1 \|\| >=0 <6.19.12-1	6.19.12-1
debian 11	linux-6.1	=6.1.106-3~deb11u1 \|\| =6.1.106-3~deb11u2 \|\| =6.1.106-3~deb11u3 \|\| =6.1.112-1~deb11u1 \|\| =6.1.119-1~deb11u1 \|\| =6.1.128-1~deb11u1 \|\| =6.1.129-1~deb11u1 \|\| =6.1.137-1~deb11u1 \|\| =6.1.140-1~deb11u1 \|\| =6.1.147-1~deb11u1 \|\| =6.1.148-1~deb11u1 \|\| =6.1.153-1~deb11u1 \|\| =6.1.158-1~deb11u1 \|\| =6.1.159-1~deb11u1 \|\| =6.1.162-1~deb11u1 \|\| =6.1.164-1~deb11u1 \|\| >=0 <6.1.170-1~deb11u1	6.1.170-1~deb11u1
rpm rhel10	kernel	-	-

1-10 of 13

Aliases

1. CVE-2026-430472. NVD-2026-430473. OSV-2026-430474. OSV-DEBIAN-2026-430475. SECURITY-TRACKER-CVE-2026-43047

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.