CVE-2022-50383 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Can't set dst buffer to done when lat decode error Core thread will call v4l2_m2m_buf_done to set dst buffer done for lat architecture. If lat call v4l2_m2m_buf_done_and_job_finish to free dst buffer when lat decode error, core thread will access kernel NULL pointer dereference, then crash.

PUBLISHED Reserved 2025-09-17 | Published 2025-09-18 | Updated 2025-09-29 | Assigner Linux

Product status

Default status

unaffected

8cdc3794b2e34b3ee11ddfccf4af3f64344a1a75 (git) before eeb090420f3477eb5011586709409fc655c2b16c

affected

8cdc3794b2e34b3ee11ddfccf4af3f64344a1a75 (git) before 66d26ed30056e7d2da3e9c14125ffe6049a4f907

affected

8cdc3794b2e34b3ee11ddfccf4af3f64344a1a75 (git) before 3568ecd3f3a6d133ab7feffbba34955c8c79bbc4

affected

Default status

affected

5.16

affected

Any version before 5.16

unaffected

6.0.16 (semver)

unaffected

6.1.2 (semver)

unaffected

6.2 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/eeb090420f3477eb5011586709409fc655c2b16c

git.kernel.org/...c/66d26ed30056e7d2da3e9c14125ffe6049a4f907

git.kernel.org/...c/3568ecd3f3a6d133ab7feffbba34955c8c79bbc4

cve.org (CVE-2022-50383)

nvd.nist.gov (CVE-2022-50383)

Download JSON

help @ threatint.eu