{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2022-49984","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-06-18T10:57:27.385Z","datePublished":"2025-06-18T11:00:46.543Z","dateUpdated":"2026-05-11T19:10:29.783Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T19:10:29.783Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nHID: steam: Prevent NULL pointer dereference in steam_{recv,send}_report\n\nIt is possible for a malicious device to forgo submitting a Feature\nReport.  The HID Steam driver presently makes no prevision for this\nand de-references the 'struct hid_report' pointer obtained from the\nHID devices without first checking its validity.  Let's change that."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/hid/hid-steam.c"],"versions":[{"version":"c164d6abf3841ffacfdb757c10616f9cb1f67276","lessThan":"c20d03b82a2e3ddbb555dad4d4f3374a9763222c","status":"affected","versionType":"git"},{"version":"c164d6abf3841ffacfdb757c10616f9cb1f67276","lessThan":"fa2b822d86be5b5ad54fe4fa2daca464e71ff90a","status":"affected","versionType":"git"},{"version":"c164d6abf3841ffacfdb757c10616f9cb1f67276","lessThan":"dc815761948ab5b8c94db6cb53c95103588f16ae","status":"affected","versionType":"git"},{"version":"c164d6abf3841ffacfdb757c10616f9cb1f67276","lessThan":"989560b6d9e00d99e07bc33067fa1c770994bf4d","status":"affected","versionType":"git"},{"version":"c164d6abf3841ffacfdb757c10616f9cb1f67276","lessThan":"dee1e51b54794e90763e70a3c78f27ba4fa930ec","status":"affected","versionType":"git"},{"version":"c164d6abf3841ffacfdb757c10616f9cb1f67276","lessThan":"cd11d1a6114bd4bc6450ae59f6e110ec47362126","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/hid/hid-steam.c"],"versions":[{"version":"4.18","status":"affected"},{"version":"0","lessThan":"4.18","status":"unaffected","versionType":"semver"},{"version":"4.19.257","lessThanOrEqual":"4.19.*","status":"unaffected","versionType":"semver"},{"version":"5.4.212","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.141","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.65","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"5.19.7","lessThanOrEqual":"5.19.*","status":"unaffected","versionType":"semver"},{"version":"6.0","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.18","versionEndExcluding":"4.19.257"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.18","versionEndExcluding":"5.4.212"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.18","versionEndExcluding":"5.10.141"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.18","versionEndExcluding":"5.15.65"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.18","versionEndExcluding":"5.19.7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.18","versionEndExcluding":"6.0"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/c20d03b82a2e3ddbb555dad4d4f3374a9763222c"},{"url":"https://git.kernel.org/stable/c/fa2b822d86be5b5ad54fe4fa2daca464e71ff90a"},{"url":"https://git.kernel.org/stable/c/dc815761948ab5b8c94db6cb53c95103588f16ae"},{"url":"https://git.kernel.org/stable/c/989560b6d9e00d99e07bc33067fa1c770994bf4d"},{"url":"https://git.kernel.org/stable/c/dee1e51b54794e90763e70a3c78f27ba4fa930ec"},{"url":"https://git.kernel.org/stable/c/cd11d1a6114bd4bc6450ae59f6e110ec47362126"}],"title":"HID: steam: Prevent NULL pointer dereference in steam_{recv,send}_report","x_generator":{"engine":"bippy-1.2.0"}}}}