Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which originates from the media:mtk-jpeg module where the work queue is not destroyed during uninstallation of the module...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from a failure to hang before detaching the power supply in the media:imx-jpeg module...

CVE-2024-50287

CVE-2024-50287: Linux kernel vulnerability fixed in media: v4l2-tpg where division by zero could occur during buffer rescale when scaled_width is zero. The patch adds WARN_ON_ONCE() and returns early to avoid precalculation.

CVE-2024-43900

In the Linux kernel, the following vulnerability has been resolved: media: xc2028: avoid use-after-free in loadfirmwarecb syzkaller reported use-after-free in loadfirmwarecb 1. The reason is because the module allocated a struct tuner in tunerprobe, and then the module initialization failed, the...

CVE-2024-43900 media: xc2028: avoid use-after-free in load_firmware_cb()

In the Linux kernel, the following vulnerability has been resolved: media: xc2028: avoid use-after-free in loadfirmwarecb syzkaller reported use-after-free in loadfirmwarecb 1. The reason is because the module allocated a struct tuner in tunerprobe, and then the module initialization failed, the...

Google Pixel Security Breach

Google Pixel is a smartphone from Google, an American company. A security vulnerability exists in Google Pixel, which stems from a competing condition in the secmediaprotect module of media.c, where a privilege bypass is possible...

UBUNTU-CVE-2023-52844

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: psi: Add check for kstrdup Add check for the return value of kstrdup and return the error if it fails in order to avoid NULL pointer dereference...

CVE-2024-27078 media: v4l2-tpg: fix some memleaks in tpg_alloc

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-tpg: fix some memleaks in tpgalloc In tpgalloc, resources should be deallocated in each and every error-handling paths, since they are allocated in for statements. Otherwise there would be memleaks because tpgfree is...

CVE-2024-26829 media: ir_toy: fix a memleak in irtoy_tx

In the Linux kernel, the following vulnerability has been resolved: media: irtoy: fix a memleak in irtoytx When irtoycommand fails, buf should be freed since it is allocated by irtoytx, or there is a memleak...

CVE-2023-52589

In the Linux kernel, the following vulnerability has been resolved: media: rkisp1: Fix IRQ disable race issue In rkisp1ispstop and rkisp1csidisable the driver masks the interrupts and then apparently assumes that the interrupt handler won't be running, and proceeds in the stop procedure. This is...

CVE-2021-46943

In the Linux kernel, the following vulnerability has been resolved: media: staging/intel-ipu3: Fix setfmt error handling If there in an error during a setfmt, do not overwrite the previous sizes with the invalid config. Without this patch, v4l2-compliance ends up allocating 4GiB of RAM and causin...

CVE-2023-39385

Vulnerability of configuration defects in the media module of certain products.. Successful exploitation of this vulnerability may cause unauthorized access...

CVE-2023-39385

Vulnerability of configuration defects in the media module of certain products.. Successful exploitation of this vulnerability may cause unauthorized access...

Design/Logic Flaw

Vulnerability of configuration defects in the media module of certain products.. Successful exploitation of this vulnerability may cause unauthorized access...

CVE-2023-39385

Vulnerability of configuration defects in the media module of certain products.. Successful exploitation of this vulnerability may cause unauthorized access...

CVE-2023-39385

CVE-2023-39385 affects Huawei HarmonyOS where the media module has a configuration defect. Multiple sources describe this as a misconfiguration vulnerability that can enable unauthorized access when exploited. The public descriptions do not specify affected versions, patches, or remediation steps...

CVE-2023-39385

Vulnerability of configuration defects in the media module of certain products.. Successful exploitation of this vulnerability may cause unauthorized access...

PT-2023-26913 · Huawei · Emui +1

Name of the Vulnerable Software and Affected Versions: Certain products affected versions not specified Description: The issue concerns configuration defects in the media module of certain products. Successful exploitation may cause unauthorized access. Recommendations: At the moment, there is no...

Huawei HarmonyOS misconfiguration vulnerability (CNVD-2023-64500)

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a misconfiguration vulnerability that stems from a configuration flaw in the media module. An attacker can exploit the...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a misconfiguration vulnerability that stems from a configuration flaw in the media module. An attacker can exploit the...