CVE-2026-35094
MEDIUM EPSS 4.2%
Published Apr 1, 20262mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Published Apr 1, 2026 2mo ago
Last Modified Jun 17, 2026 1w ago
Description
A flaw was found in libinput. An attacker capable of deploying a Lua plugin file in specific system directories can exploit a dangling pointer vulnerability. This occurs when a garbage collection cleanup function is called, leaving a pointer that can then be printed to system logs. This could potentially expose sensitive data if the memory location is re-used, leading to information disclosure. For this exploit to work, Lua plugins must be enabled in libinput and loaded by the compositor.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity None
Availability None
Threat Intelligence
EPSS Exploit Probability
4.2% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-825
Affected Products 3
| Vendor | Product | Version | Range |
|---|---|---|---|
| freedesktop | libinput | * | any |
| fedoraproject | fedora | 43 | any |
| fedoraproject | fedora | 44 | any |
References 3
- access.redhat.com https://access.redhat.com/security/cve/CVE-2026-35094
- bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=2453840
- gitlab.freedesktop.org https://gitlab.freedesktop.org/libinput/libinput/-/work_items/1272
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.