{"schema_version":"1.7.2","id":"OESA-2026-2628","modified":"2026-06-12T12:25:24Z","published":"2026-06-12T12:25:24Z","upstream":["CVE-2026-50292"],"summary":"libinput security update","details":"libinput is a library to handle input devices in Wayland compositors and to provide  a generic X.Org input driver.It provides device detection, device handling, input  device event processing and abstraction so minimize the amount of custom input code compositors need to provide the common set of functionality that users expect.\r\n\r\nSecurity Fix(es):\n\nIn libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-group unescaped phys output can inject udev properties leading to arbitrary root code execution(CVE-2026-50292)","affected":[{"package":{"ecosystem":"openEuler:20.03-LTS-SP4","name":"libinput","purl":"pkg:rpm/openEuler/libinput&distro=openEuler-20.03-LTS-SP4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.15.6-4.oe2003sp4"}]}],"ecosystem_specific":{"aarch64":["libinput-1.15.6-4.oe2003sp4.aarch64.rpm","libinput-debuginfo-1.15.6-4.oe2003sp4.aarch64.rpm","libinput-debugsource-1.15.6-4.oe2003sp4.aarch64.rpm","libinput-devel-1.15.6-4.oe2003sp4.aarch64.rpm","libinput-help-1.15.6-4.oe2003sp4.aarch64.rpm","libinput-utils-1.15.6-4.oe2003sp4.aarch64.rpm"],"src":["libinput-1.15.6-4.oe2003sp4.src.rpm"],"x86_64":["libinput-1.15.6-4.oe2003sp4.x86_64.rpm","libinput-debuginfo-1.15.6-4.oe2003sp4.x86_64.rpm","libinput-debugsource-1.15.6-4.oe2003sp4.x86_64.rpm","libinput-devel-1.15.6-4.oe2003sp4.x86_64.rpm","libinput-help-1.15.6-4.oe2003sp4.x86_64.rpm","libinput-utils-1.15.6-4.oe2003sp4.x86_64.rpm"]}},{"package":{"ecosystem":"openEuler:22.03-LTS-SP4","name":"libinput","purl":"pkg:rpm/openEuler/libinput&distro=openEuler-22.03-LTS-SP4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.19.2-3.oe2203sp4"}]}],"ecosystem_specific":{"aarch64":["libinput-1.19.2-3.oe2203sp4.aarch64.rpm","libinput-debuginfo-1.19.2-3.oe2203sp4.aarch64.rpm","libinput-debugsource-1.19.2-3.oe2203sp4.aarch64.rpm","libinput-devel-1.19.2-3.oe2203sp4.aarch64.rpm","libinput-help-1.19.2-3.oe2203sp4.aarch64.rpm","libinput-utils-1.19.2-3.oe2203sp4.aarch64.rpm"],"src":["libinput-1.19.2-3.oe2203sp4.src.rpm"],"x86_64":["libinput-1.19.2-3.oe2203sp4.x86_64.rpm","libinput-debuginfo-1.19.2-3.oe2203sp4.x86_64.rpm","libinput-debugsource-1.19.2-3.oe2203sp4.x86_64.rpm","libinput-devel-1.19.2-3.oe2203sp4.x86_64.rpm","libinput-help-1.19.2-3.oe2203sp4.x86_64.rpm","libinput-utils-1.19.2-3.oe2203sp4.x86_64.rpm"]}},{"package":{"ecosystem":"openEuler:24.03-LTS-SP1","name":"libinput","purl":"pkg:rpm/openEuler/libinput&distro=openEuler-24.03-LTS-SP1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.24.0-3.oe2403sp1"}]}],"ecosystem_specific":{"aarch64":["libinput-1.24.0-3.oe2403sp1.aarch64.rpm","libinput-debuginfo-1.24.0-3.oe2403sp1.aarch64.rpm","libinput-debugsource-1.24.0-3.oe2403sp1.aarch64.rpm","libinput-devel-1.24.0-3.oe2403sp1.aarch64.rpm","libinput-help-1.24.0-3.oe2403sp1.aarch64.rpm","libinput-utils-1.24.0-3.oe2403sp1.aarch64.rpm"],"src":["libinput-1.24.0-3.oe2403sp1.src.rpm"],"x86_64":["libinput-1.24.0-3.oe2403sp1.x86_64.rpm","libinput-debuginfo-1.24.0-3.oe2403sp1.x86_64.rpm","libinput-debugsource-1.24.0-3.oe2403sp1.x86_64.rpm","libinput-devel-1.24.0-3.oe2403sp1.x86_64.rpm","libinput-help-1.24.0-3.oe2403sp1.x86_64.rpm","libinput-utils-1.24.0-3.oe2403sp1.x86_64.rpm"]}},{"package":{"ecosystem":"openEuler:24.03-LTS-SP3","name":"libinput","purl":"pkg:rpm/openEuler/libinput&distro=openEuler-24.03-LTS-SP3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.24.0-3.oe2403sp3"}]}],"ecosystem_specific":{"aarch64":["libinput-1.24.0-3.oe2403sp3.aarch64.rpm","libinput-debuginfo-1.24.0-3.oe2403sp3.aarch64.rpm","libinput-debugsource-1.24.0-3.oe2403sp3.aarch64.rpm","libinput-devel-1.24.0-3.oe2403sp3.aarch64.rpm","libinput-help-1.24.0-3.oe2403sp3.aarch64.rpm","libinput-utils-1.24.0-3.oe2403sp3.aarch64.rpm"],"src":["libinput-1.24.0-3.oe2403sp3.src.rpm"],"x86_64":["libinput-1.24.0-3.oe2403sp3.x86_64.rpm","libinput-debuginfo-1.24.0-3.oe2403sp3.x86_64.rpm","libinput-debugsource-1.24.0-3.oe2403sp3.x86_64.rpm","libinput-devel-1.24.0-3.oe2403sp3.x86_64.rpm","libinput-help-1.24.0-3.oe2403sp3.x86_64.rpm","libinput-utils-1.24.0-3.oe2403sp3.x86_64.rpm"]}}],"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2628"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-50292"}],"database_specific":{"severity":"High"}}