Common vulnerabilities and Exposures (CVE)

Skip to main content

Required CVE Record Information

Description

In the Linux kernel, the following vulnerability has been resolved: media: ti-vpe: cal: Fix a NULL pointer dereference in cal_ctx_v4l2_init_formats() In cal_ctx_v4l2_init_formats(), devm_kzalloc() is assigned to ctx->active_fmt and there is a dereference of it after that, which could lead to NULL pointer dereference on failure of devm_kzalloc(). Fix this bug by adding a NULL check of ctx->active_fmt. This bug was found by a static analyzer. Builds with 'make allyesconfig' show no new warnings, and our static analyzer no longer warns about this code.

Product Status

Learn more

Versions 4 Total

Default Status: unaffected

affected

  • affected from 7168155002cf7aadbfaa14a28f037c880a214764 before aa613ac270292e102503e9767882e39200efe608 
  • affected from 7168155002cf7aadbfaa14a28f037c880a214764 before 91e2805579ab0783eed53acc2bf9fb553e939004 
  • affected from 7168155002cf7aadbfaa14a28f037c880a214764 before 1381f1a629a090c251965edb56f849ad648414a4 
  • affected from 7168155002cf7aadbfaa14a28f037c880a214764 before abd77889851d2ead0d0c9c4d29f1808801477b00 

Versions 6 Total

Default Status: affected

affected

  • affected at 5.12 

unaffected

  • unaffected from before 5.12 
  • unaffected from 5.15.33 through 5.15.* 
  • unaffected from 5.16.19 through 5.16.* 
  • unaffected from 5.17.2 through 5.17.* 
  • unaffected from 5.18