CVE-2026-45969 - Vulnerability Details

- HID: playstation: Add missing check for input_ff_create_memless

Description

In the Linux kernel, the following vulnerability has been resolved:

HID: playstation: Add missing check for input_ff_create_memless

The ps_gamepad_create() function calls input_ff_create_memless()
without verifying its return value, which can lead to incorrect
behavior or potential crashes when FF effects are triggered.

Add a check for the return value of input_ff_create_memless().

Published: 2026-05-27

Score: n/a

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The Linux kernel’s PlayStation HID driver contains a flaw where the ps_gamepad_create function calls input_ff_create_memless without verifying its return value. If the call fails, the driver later dereferences an uninitialized or null pointer when a force‑feedback effect is triggered, which can cause the kernel to panic. This results in a system‑wide denial of service since a kernel crash halts all processes and requires a reboot. The weakness is a classic unchecked return value leading to null pointer dereference (CWE-252).

Affected Systems

All Linux distributions running a kernel version prior to the commit that added the null‑pointer check are affected. Because the bug resides in the generic kernel, any system using an unpatched kernel that ships the PlayStation HID driver is vulnerable, regardless of distribution or patch level.

Risk and Exploitability

The advisory does not specify whether elevated privileges are required. Based on the description, it is inferred that the attacker must have local access to attach or inject a PlayStation controller to the target machine. The likely attack vector is therefore local device interaction. If the attacker can trigger a force‑feedback effect via a malicious device, the unhandled error can cause a kernel panic, resulting in a system‑wide denial of service. No CVSS or EPSS metrics are available, and the vulnerability is not listed in CISA’s KEV catalog.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`51151098d7ab832f2a8b8f5c51fe224a9c98fdd5`	affected	< 496a345cc047a2c2d9d5a76956e1182525578bd5
`51151098d7ab832f2a8b8f5c51fe224a9c98fdd5`	affected	< 987dee1486e975e2baa6a5d062cfdf18bbe901c8
`51151098d7ab832f2a8b8f5c51fe224a9c98fdd5`	affected	< 33acf9a4d6eb1f6d01691faca96ad6b2ab0fcfc0
`51151098d7ab832f2a8b8f5c51fe224a9c98fdd5`	affected	< d955aeb26e1210a018492b3b32cbdfaf017aaa25
`51151098d7ab832f2a8b8f5c51fe224a9c98fdd5`	affected	< 35301ca2a83d17aac2f3e8e35c696f0da2a13111
`51151098d7ab832f2a8b8f5c51fe224a9c98fdd5`	affected	< 45b01d85265bc1ccdd69e0a7887db4b905a778f4
`51151098d7ab832f2a8b8f5c51fe224a9c98fdd5`	affected	< e6807641ac94e832988655a1c0e60ccc806b76dc

Linux

affected

Version	Status	Constraints
`5.12`	affected	—
`0`	unaffected	< 5.12
`5.15.202`	unaffected	≤ 5.15.*
`6.1.165`	unaffected	≤ 6.1.*
`6.6.128`	unaffected	≤ 6.6.*
`6.12.75`	unaffected	≤ 6.12.*
`6.18.14`	unaffected	≤ 6.18.*
`6.19.4`	unaffected	≤ 6.19.*
`7.0`	unaffected	≤ *

No data.

Vendor Product Confidence Versions

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`[51151098d7ab832f2a8b8f5c51fe224a9c98fdd5,496a345cc047a2c2d9d5a76956e1182525578bd5)`	affected	code_commit	—
`[51151098d7ab832f2a8b8f5c51fe224a9c98fdd5,987dee1486e975e2baa6a5d062cfdf18bbe901c8)`	affected	code_commit	—
`[51151098d7ab832f2a8b8f5c51fe224a9c98fdd5,33acf9a4d6eb1f6d01691faca96ad6b2ab0fcfc0)`	affected	code_commit	—
`[51151098d7ab832f2a8b8f5c51fe224a9c98fdd5,45b01d85265bc1ccdd69e0a7887db4b905a778f4)`	affected	code_commit	—
`[51151098d7ab832f2a8b8f5c51fe224a9c98fdd5,35301ca2a83d17aac2f3e8e35c696f0da2a13111)`	affected	code_commit	—
`[51151098d7ab832f2a8b8f5c51fe224a9c98fdd5,45b01d85265bc1ccdd69e0a7887db4b905a778f4)`	affected	code_commit	—
`[51151098d7ab832f2a8b8f5c51fe224a9c98fdd5,e6807641ac94e832988655a1c0e60ccc806b76dc)`	affected	code_commit	—

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`5.12`	affected	generic	—
`[0,5.12)`	unaffected	generic	—
`[5.15.202,5.16.0)`	unaffected	semver	—
`[6.1.165,6.2.0)`	unaffected	semver	—
`[6.6.128,6.7.0)`	unaffected	semver	—
`[6.12.75,6.13.0)`	unaffected	semver	—
`[6.18.14,6.19.0)`	unaffected	semver	—
`[6.19.4,6.20.0)`	unaffected	semver	—
`[0,*]`	unaffected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade the kernel to a release that contains the commit adding the null‑pointer check in the PlayStation HID driver
If a kernel upgrade is not immediately available, disable force‑feedback support for PlayStation devices by removing or unloading the ps4_rmi module or by configuring the driver to reject the ff capability
Restrict which devices can attach to the system by enforcing strict device access controls or limiting controller connections to trusted users

Generated by OpenCVE AI on May 28, 2026 at 05:07 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00024.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/33acf9a4d6eb1f6d01691faca96ad6b2ab0fcfc0
https://git.kernel.org/stable/c/35301ca2a83d17aac2f3e8e35c696f0da2a13111
https://git.kernel.org/stable/c/45b01d85265bc1ccdd69e0a7887db4b905a778f4
https://git.kernel.org/stable/c/496a345cc047a2c2d9d5a76956e1182525578bd5
https://git.kernel.org/stable/c/987dee1486e975e2baa6a5d062cfdf18bbe901c8
https://git.kernel.org/stable/c/d955aeb26e1210a018492b3b32cbdfaf017aaa25
https://git.kernel.org/stable/c/e6807641ac94e832988655a1c0e60ccc806b76dc
https://lore.kernel.org/linux-cve-announce/2026052735-CVE-2026-45969-a681@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2026-45969
https://www.cve.org/CVERecord?id=CVE-2026-45969

History

Thu, 28 May 2026 03:00:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-476 CWE-703

Thu, 28 May 2026 00:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-252
References		https://lore.kernel.org/linux-cve-announce/2026052735-CVE-2026-45969-a681@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2026-45969 https://www.cve.org/CVERecord?id=CVE-2026-45969

Wed, 27 May 2026 22:30:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-476 CWE-703

Wed, 27 May 2026 14:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: HID: playstation: Add missing check for input_ff_create_memless The ps_gamepad_create() function calls input_ff_create_memless() without verifying its return value, which can lead to incorrect behavior or potential crashes when FF effects are triggered. Add a check for the return value of input_ff_create_memless().
Title		HID: playstation: Add missing check for input_ff_create_memless
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/33acf9a4d6eb1f6d01691faca96ad6b2ab0fcfc0 https://git.kernel.org/stable/c/35301ca2a83d17aac2f3e8e35c696f0da2a13111 https://git.kernel.org/stable/c/45b01d85265bc1ccdd69e0a7887db4b905a778f4 https://git.kernel.org/stable/c/496a345cc047a2c2d9d5a76956e1182525578bd5 https://git.kernel.org/stable/c/987dee1486e975e2baa6a5d062cfdf18bbe901c8 https://git.kernel.org/stable/c/d955aeb26e1210a018492b3b32cbdfaf017aaa25 https://git.kernel.org/stable/c/e6807641ac94e832988655a1c0e60ccc806b76dc

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-27T12:18:28.112Z

Updated: 2026-05-27T12:18:28.112Z

Reserved: 2026-05-13T15:03:33.089Z

Link: CVE-2026-45969

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:17:13.800

Modified: 2026-05-27T14:48:03.013

Link: CVE-2026-45969

Redhat

Severity :

Publid Date: 2026-05-27T00:00:00Z

Links: CVE-2026-45969 - Bugzilla

OpenCVE Enrichment

Updated: 2026-05-28T05:15:09Z

Weaknesses

CWE-252

Impact

Affected Systems

Risk and Exploitability

Tracking

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object