Description

In the Linux kernel, the following vulnerability has been resolved: HID: steam: Prevent NULL pointer dereference in steam_{recv,send}_report It is possible for a malicious device to forgo submitting a Feature Report. The HID Steam driver presently makes no prevision for this and de-references the 'struct hid_report' pointer obtained from the HID devices without first checking its validity. Let's change that.

INFO

Published Date :

2025-06-18T11:00:46.543Z

Last Modified :

2025-06-18T11:00:46.543Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-49984 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-49984.

URL Resource
https://git.kernel.org/stable/c/989560b6d9e00d99e07bc33067fa1c770994bf4d cve-icon cve-icon
https://git.kernel.org/stable/c/c20d03b82a2e3ddbb555dad4d4f3374a9763222c cve-icon cve-icon
https://git.kernel.org/stable/c/cd11d1a6114bd4bc6450ae59f6e110ec47362126 cve-icon cve-icon
https://git.kernel.org/stable/c/dc815761948ab5b8c94db6cb53c95103588f16ae cve-icon cve-icon
https://git.kernel.org/stable/c/dee1e51b54794e90763e70a3c78f27ba4fa930ec cve-icon cve-icon
https://git.kernel.org/stable/c/fa2b822d86be5b5ad54fe4fa2daca464e71ff90a cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025061822-CVE-2022-49984-fa6b@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49984 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49984 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact