CVE-2023-54147

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the media subsystem, specifically in the mtk-mdp3 platform driver. A missing check for the return value of the ida alloc function can lead to a NULL pointer dereference. Additionally, memory allocated for ctx->id is not freed if the mdp m2m open function fails, resulting in a memory leak. The issue is related to improper resource management during initialization and error handling within the driver.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.