Libinput

This hub aggregates every CVE we track for Libinput, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 5 most recently published vulnerabilities affecting Libinput.

• CVE-2026-50292In libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-group unescaped phys output can inject udev properties leading to arbitrary root code execution7.4Jun 4, 2026
• BDU:2026-07797Уязвимость интерфейса libinput-device-group библиотеки libinput реализации протоколов серверов отображения X.Org и Wayland, позволяющая нарушителю повысить свои привилегии до уровня root и выполнить произвольный код8.8Jun 4, 2026
• CVE-2026-35093Libinput: libinput: unauthorized code execution and information disclosure through lua bytecode plugins8.8Apr 1, 2026
• CVE-2026-35094Libinput: libinput: information disclosure via dangling pointer in lua plugin handling3.3Apr 1, 2026
• CVE-2022-1215A format string vulnerability was found in libinput7.8May 31, 2022