CVE-2026-43111

HIGH 7.8

HID: roccat: fix use-after-free in roccat_report_event

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: HID: roccat: fix use-after-free in roccat_report_event roccat_report_event() iterates over the device->readers list without holding the readers_lock. This allows a concurrent roccat_release() to remove and free a reader while it's still being accessed, leading to a use-after-free. Protect the readers list traversal with the readers_lock mutex.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	May 6, 2026
Last Updated	Jun 1, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

Linux / Linux

206f5f2fcb5ff5bb0c60f9e9189937f3ca03e378 < 20dca865460f7943cf70afca274b60dac371f546 206f5f2fcb5ff5bb0c60f9e9189937f3ca03e378 < 441689e3103694caa3e2d62b7d57c7bccefa5e37 206f5f2fcb5ff5bb0c60f9e9189937f3ca03e378 < 181ea51ab0f6370842c5b49cfb86824253a1189e 206f5f2fcb5ff5bb0c60f9e9189937f3ca03e378 < e6a445513fbc6a0329d2d5ff375b6725750ec5a6 206f5f2fcb5ff5bb0c60f9e9189937f3ca03e378 < e16a6d11bd77b81632165f02cf0d5946df74b3b7 206f5f2fcb5ff5bb0c60f9e9189937f3ca03e378 < 36bb2d0b915014bbdc5044982b31b57b78045b93 206f5f2fcb5ff5bb0c60f9e9189937f3ca03e378 < bca0b595e15450dd66b1153c76c4ef1087ee011b 206f5f2fcb5ff5bb0c60f9e9189937f3ca03e378 < d802d848308b35220f21a8025352f0c0aba15c12

Linux / Linux

2.6.35

References

NVD ↗ CVE.org ↗ EPSS Data ↗