PT-2025-8182 · Linux+2 · Linux Kernel+2

Published

2022-02-17

Updated

2025-09-22

CVE-2022-49254

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A NULL pointer dereference issue was found in the Linux kernel, specifically in the cal ctx v4l2 init formats() function. This issue occurs when devm kzalloc() fails and assigns a NULL value to ctx->active fmt, which is then dereferenced. The problem was identified by a static analyzer.

Recommendations For the affected Linux kernel versions, add a NULL check of ctx->active fmt in the cal ctx v4l2 init formats() function to prevent the NULL pointer dereference.

Exploit

Fix

Improper Resource Release

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404CWE-476

Related Identifiers

BDU:2026-04314

CVE-2022-49254

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1241-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

Affected Products

Astra Linux

Linux Kernel

Suse

PT-2025-8182 · Linux+2 · Linux Kernel+2

CVE-2022-49254

Weakness Enumeration

Related Identifiers

Affected Products

References · 1334