CVE-2026-31524

EUVD-2026-24913

22.04.2026, 14:16

In the Linux kernel, the following vulnerability has been resolved:

HID: asus: avoid memory leak in asus_report_fixup()

The asus_report_fixup() function was returning a newly allocated
kmemdup()-allocated buffer, but never freeing it.  Switch to
devm_kzalloc() to ensure the memory is managed and freed automatically
when the device is removed.

The caller of report_fixup() does not take ownership of the returned
pointer, but it is permitted to return a pointer whose lifetime is at
least that of the input buffer.

Also fix a harmless out-of-bounds read by copying only the original
descriptor size.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5.5 MEDIUM	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 7%

Affected Products (NVD)

Vendor	Product	Version
linux	linux_kernel	4.14 ≤ 𝑥 < 5.10.253
linux	linux_kernel	5.11 ≤ 𝑥 < 5.15.203
linux	linux_kernel	5.16 ≤ 𝑥 < 6.1.168
linux	linux_kernel	6.2 ≤ 𝑥 < 6.6.131
linux	linux_kernel	6.7 ≤ 𝑥 < 6.12.80
linux	linux_kernel	6.13 ≤ 𝑥 < 6.18.21
linux	linux_kernel	6.19 ≤ 𝑥 < 6.19.11
linux	linux_kernel	7.0:rc1
linux	linux_kernel	7.0:rc2

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

linux

bookworm	6.1.170-3 fixed
bookworm (security)	6.1.174-1 fixed
bullseye	vulnerable
bullseye (security)	5.10.257-1 fixed
forky	7.0.10-1 fixed
sid	7.0.10-1 fixed
trixie	6.12.86-1 fixed
trixie (security)	6.12.90-2 fixed

linux-6.1

bullseye (security)

6.1.174-1~deb11u1

fixed

openSUSE / SLES Releases

openSUSE Product

Release

cluster-md-kmp-default

suse enterprise server 12 SP5

4.12.14-122.310.1

fixed

dlm-kmp-default

suse enterprise server 12 SP5

4.12.14-122.310.1

fixed

gfs2-kmp-default

suse enterprise server 12 SP5

4.12.14-122.310.1

fixed

kernel-default

suse enterprise server 12 SP5

4.12.14-122.310.1

fixed

kernel-default-base

suse enterprise server 12 SP5

4.12.14-122.310.1

fixed

kernel-default-man

suse enterprise server 12 SP5

4.12.14-122.310.1

fixed

kernel-macros

suse enterprise server 12 SP5

4.12.14-122.310.1

fixed

kernel-source

suse enterprise server 12 SP5

4.12.14-122.310.1

fixed

kernel-syms

suse enterprise server 12 SP5

4.12.14-122.310.1

fixed

ocfs2-kmp-default

suse enterprise server 12 SP5

4.12.14-122.310.1

fixed

Common Weakness Enumeration

CWE-401 - Missing Release of Memory after Effective Lifetime
The software does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

Vulnerability Media Exposure

[GERMAN] Linux Kernel: Mehrere Schwachstellen
Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um einen Denial of Service Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, Informationen offenzulegen, andere nicht näher spezifizierte Auswirkungen zu verursachen und möglicherweise Code auszuführen.
Published: 2026-04-22T22:00:00+00:00

References

https://git.kernel.org/stable/c/2bad24c17742fc88973d6aea526ce1353f5334a3

https://git.kernel.org/stable/c/2e4fe6b15c2f390c023b20d728b1a3fe7ea4f973

https://git.kernel.org/stable/c/726765b43deb2b4723869d673cc5fc6f7a3b2059

https://git.kernel.org/stable/c/7a6d6e4d8af044f94fa97e97af5ff2771e1fbebd

https://git.kernel.org/stable/c/84724ac4821a160d47b84289adf139023027bdbb

https://git.kernel.org/stable/c/a41cc7c1668e44ff2c2d36f9a6353253ffc43e3c

https://git.kernel.org/stable/c/ede95cfcab8064d9a08813fbd7ed42cea8843dcf

https://git.kernel.org/stable/c/f20f17cffbe34fb330267e0f8084f5565f807444