Chiyuan Huang

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified) Description: The issue concerns an uninitialized use of regulator config in the rtq2208 driver, which can cause a kernel error. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a NULL pointer dereference in the Linux kernel, specifically in the `v4l2 async create ancillary links()` function. This function creates ancillary links for lens and flash sub-devices, which are sub-device to sub-device links. If the async notifier is related to a V4L2 device, the source sub-device of the ancillary link is NULL, leading to a NULL pointer dereference. The fix involves checking that the notifier's `sd` field is non-NULL in `v4l2 async create ancillary links()`. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.