In the Linux kernel, the following vulnerability has been resolved: HID: playstation: Clamp num_touch_reports A device would never lie about the number of touch reports would it? If it does the loop in dualshock4_parse_report will read off the end of the touch_reports array, up to about 2 KiB for the maximum number of 256 loop iteraions. The data that is read is emitted via evdev if the DS4_TOUCH_POINT_INACTIVE bit happens to be set. Protect against this by clamping the num_touch_reports value provided by the device to the maximum size of the touch_reports array.

A flaw was found in the Linux kernel's Human Interface Device (HID) PlayStation driver. A malicious device could provide an excessively large number of touch reports, leading to an out-of-bounds read in the `dualshock4_parse_report` function. This could allow an attacker to read up to 2 KiB of kernel memory, potentially leading to information disclosure.

Red Hat Enterprise Linux 10 Not affected kernel Red Hat Enterprise Linux 6 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel-rt Red Hat Enterprise Linux 8 Not affected kernel Red Hat Enterprise Linux 8 Not affected kernel-rt Red Hat Enterprise Linux 9 Not affected kernel Red Hat Enterprise Linux 9 Not affected kernel-rt https://www.cve.org/CVERecord?id=CVE-2026-46232 https://nvd.nist.gov/vuln/detail/CVE-2026-46232 https://lore.kernel.org/linux-cve-announce/2026052839-CVE-2026-46232-58cb@gregkh/T