PT-2025-8093 · Linux+3 · Linux Kernel+3

Mirela Rabulea

Published

2022-01-01

Updated

2025-09-23

CVE-2022-49165

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A issue in the Linux kernel has been resolved, specifically in the media subsystem, imx-jpeg component. The problem occurs when an application queues an NV12M jpeg as an output buffer but then queues a single planar capture buffer, causing the kernel to crash with a "Unable to handle kernel NULL pointer dereference" error in the mxc jpeg addrs function. This is prevented by finishing the job with an error.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Resource Release

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404CWE-476

Related Identifiers

BDU:2026-03552

CVE-2022-49165

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1241-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

Affected Products

Astra Linux

Debian

Linux Kernel

Suse

PT-2025-8093 · Linux+3 · Linux Kernel+3

CVE-2022-49165

Weakness Enumeration

Related Identifiers

Affected Products

References · 1334