cve 2025 21923

CVE-2025-21923 is a Linux kernel vulnerability in the Steam HID driver that causes a use-after-free condition during device detachment. This memory-safety bug affects systems running kernels within the impacted release windows and has been fixed upstream. The vulnerability specifically targets the HID stack, which handles game controllers, keyboards, mice, and other human-interface devices. Operators of affected Linux systems should apply the upstream patch promptly to prevent potential exploitation. The tag covers discussion of the vulnerability details, affected kernel versions, and the official patch from the Linux kernel community.