183 matches found
Updated libinput packages fix security vulnerability
In libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-group unescaped phys output can inject udev properties leading to arbitrary root code execution...
MGASA-2026-0208 Updated libinput packages fix security vulnerability
In libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-group unescaped phys output can inject udev properties leading to arbitrary root code execution...
OESA-2026-2628 libinput security update
libinput is a library to handle input devices in Wayland compositors and to provide a generic X.Org input driver.It provides device detection, device handling, input device event processing and abstraction so minimize the amount of custom input code compositors need to provide the common set of...
[SECURITY] [DLA 4626-1] libinput security update
Debian LTS Advisory DLA-4626-1 [email protected] https://www.debian.org/lts/security/ Santiago Ruano Rincón June 11, 2026 https://wiki.debian.org/LTS Package : libinput Version : 1.16.4-3+deb11u1 CVE ID : CVE-2022-1215 CVE-2026-50292 Two vulnerabilities were found in libinput, an input...
Debian dla-4626 : libinput-bin - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4626 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4626-1 [email protected]...
[SECURITY] [DSA 6339-1] libinput security update
------------------------------------------------------------------------- Debian Security Advisory DSA-6339-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 11, 2026 https://www.debian.org/security/faq -...
Debian dsa-6339 : libinput-bin - security update
The remote Debian 12 / 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6339 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6339-1 [email protected] https://www.debian.org/security/...
CVE-2026-50292 affecting package libinput for versions less than 1.25.0-2
CVE-2026-50292 affecting package libinput for versions less than 1.25.0-2. A patched version of the package is available...
SUSE CVE-2026-50292
In libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-group unescaped phys output can inject udev properties leading to arbitrary root code execution...
In libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-group unescaped phys output can inject udev properties leading to arbitrary root code execution
...
[SECURITY] Fedora 44 Update: libinput-1.31.3-1.fc44
libinput is a library that handles input devices for display servers and other applications that need to directly deal with input devices. It provides device detection, device handling, input device event processing and abstraction so minimize the amount of custom input code the user of libinput...
Fedora 44 : libinput (2026-5e2446b30f)
The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-5e2446b30f advisory. libinput 1.31.3, fixes a udev property inject via uinput devices that can lead to local privilege escalation Tenable has extracted the preceding description...
Slackware Linux 15.0 / current libinput Vulnerability (SSA:2026-155-02)
The version of libinput installed on the remote host is prior to 1.31.3. It is, therefore, affected by a vulnerability as referenced in the SSA:2026-155-02 advisory. New libinput packages are available for Slackware 15.0 and -current to fix a security issue. Tenable has extracted the preceding...
CVE-2026-50265
Rejected reason: This CVE ID was assigned as a duplicate of CVE-2026-50292...
UBUNTU-CVE-2026-50265
Rejected reason: This CVE ID was assigned as a duplicate of CVE-2026-50292...
CVE-2026-50265
This CVE ID was assigned as a duplicate of CVE-2026-50292...
EUVD-2026-34795
A flaw was found in libinput. A local attacker with access to /dev/uinput can inject arbitrary udev properties through the libinput-device-group helper. This injection can lead to root code execution, for example, by exploiting REMOVECMD properties that are executed when a device is removed. This...
CVE-2026-50265
CVE-2026-50265 describes a local privilege escalation in libinput. A local attacker with access to /dev/uinput can inject arbitrary udev properties via the libinput-device-group helper, which can lead to root code execution (e.g., through REMOVE_CMD properties executed when a device is removed). ...
CVE-2026-50265
...
CVE-2026-50265
...