In the Linux kernel, the following vulnerability has been resolved: HID: roccat: fix use-after-free in roccat_report_event roccat_report_event() iterates over the device->readers list without holding the readers_lock. This allows a concurrent roccat_release() to remove and free a reader while it's still being accessed, leading to a use-after-free. Protect the readers list traversal with the readers_lock mutex.

A flaw was found in the Linux kernel's roccat Human Interface Device (HID) driver. This vulnerability, a use-after-free, arises from a synchronization issue where the `roccat_report_event()` function accesses a list of readers without adequate locking. A local attacker could exploit this to cause a system crash (denial of service) or potentially execute arbitrary code, compromising system integrity.

Red Hat Enterprise Linux 10 Affected kernel Red Hat Enterprise Linux 6 Not affected kernel Red Hat Enterprise Linux 7 Affected kernel Red Hat Enterprise Linux 7 Affected kernel-rt Red Hat Enterprise Linux 8 Affected kernel Red Hat Enterprise Linux 8 Affected kernel-rt Red Hat Enterprise Linux 9 Affected kernel Red Hat Enterprise Linux 9 Affected kernel-rt https://www.cve.org/CVERecord?id=CVE-2026-43111 https://nvd.nist.gov/vuln/detail/CVE-2026-43111 https://lore.kernel.org/linux-cve-announce/2026050624-CVE-2026-43111-1e4c@gregkh/T