PT-2025-38331 · Linux+2 · Linux Kernel+2
Published
2022-11-25
·
Updated
2026-04-20
·
CVE-2022-50383
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
The Linux kernel contains an issue where the core thread may call
v4l2 m2m buf done to set the destination buffer to done for late architecture. If the late architecture calls v4l2 m2m buf done and job finish to free the destination buffer when a late decode error occurs, the core thread may access a NULL pointer, leading to a crash.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Astra Linux
Debian
Linux Kernel