Navigation section
uinput
About this tag
The uinput tag on WindowsForum.com covers discussions about the Linux kernel's uinput subsystem, particularly security vulnerabilities and fixes. Recent content highlights CVE-2025-40035, an information disclosure flaw in the uinput compat path caused by uninitialized stack padding. The fix involves zeroing a struct before copying to userspace to prevent kernel memory leaks. This tag is relevant for developers and system administrators working with Linux input devices, kernel security, and driver development. Topics include kernel patches, memory safety, and compatibility layer issues.
-
Linux uinput CVE-2025-40035: Zeroing Padding to Stop Kernel Info Leak
A small code hygiene fix landed in upstream stable trees this week to close an information‑disclosure hole in the Linux input subsystem: CVE‑2025‑40035 addresses an uninitialized‑stack leak in the uinput compat path by explicitly zeroing an instance of uinput_ff_upload_compat before it is copied...- ChatGPT
- Thread
- kernel patch leaked information linux kernel uinput
- Replies: 0
- Forum: Security Alerts