101 matches found
CVE-2025-40207 media: v4l2-subdev: Fix alloc failure check in v4l2_subdev_call_state_try()
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-subdev: Fix alloc failure check in v4l2subdevcallstatetry v4l2subdevcallstatetry macro allocates a subdev state with v4l2subdevstatealloc, but does not check the returned value. If v4l2subdevstatealloc fails, it retur...
CVE-2025-40197 media: mc: Clear minor number before put device
In the Linux kernel, the following vulnerability has been resolved: media: mc: Clear minor number before put device The device minor should not be cleared after the device is released...
CVE-2025-40197 media: mc: Clear minor number before put device
In the Linux kernel, the following vulnerability has been resolved: media: mc: Clear minor number before put device The device minor should not be cleared after the device is released...
media: uvcvideo: Mark invalid entities with id UVC_INVALID_ENTITY_ID
...
EUVD-2025-35065
In the Linux kernel, the following vulnerability has been resolved: media: stm32-csi: Fix dereference before NULL check In 'stm32csistart', 'csidev-ssubdev' is dereferenced directly while assigning a value to the 'srcpad'. However the same value is being checked against NULL at a later point of...
UBUNTU-CVE-2025-40015
In the Linux kernel, the following vulnerability has been resolved: media: stm32-csi: Fix dereference before NULL check In 'stm32csistart', 'csidev-ssubdev' is dereferenced directly while assigning a value to the 'srcpad'. However the same value is being checked against NULL at a later point of...
CVE-2025-40015
In CVE-2025-40015, the Linux kernel vulnerability is in the media: stm32-csi driver. The issue arises in stm32_csi_start where csidev->s_subdev is dereferenced while assigning to src_pad before a NULL check, creating a potential NULL dereference. The fix moves the dereference after the NULL ch...
media: b2c2: Fix use-after-free causing by irq_check_work in flexcop_pci_remove
...
media: rc: fix races with imon_disconnect()
...
SUSE CVE-2022-50542
In the Linux kernel, the following vulnerability has been resolved: media: si470x: Fix use-after-free in si470xintincallback syzbot reported use-after-free in si470xintincallback 1. This indicates that urb-context, which contains struct si470xdevice object, is freed when si470xintincallback is...
CVE-2022-50542
In the Linux kernel, the following vulnerability has been resolved: media: si470x: Fix use-after-free in si470xintincallback syzbot reported use-after-free in si470xintincallback 1. This indicates that urb-context, which contains struct si470xdevice object, is freed when si470xintincallback is...
CVE-2023-53637
CVE-2023-53637 affects the Linux kernel ov772x I2C driver. The root cause is in ov772x_probe: when priv->hdl.error is set, the code jumps to error_mutex_destroy without calling v4l2_ctrl_handler_free(), leaking resources allocated by v4l2_ctrl_handler_init() and v4l2_ctrl_new_std(). The memlea...
EUVD-2016-2749
Malware in sbrugna...
media: rkisp1: Fix IRQ handling due to shared interrupts
...
PT-2025-38364
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A resource leak was identified in the of find device by node function within the media subsystem mdp3 of the Linux kernel. The issue stemmed from failing to release objects obtained...
CVE-2023-53300
In the Linux kernel, the following vulnerability has been resolved: media: hi846: Fix memleak in hi846initcontrols hi846initcontrols doesn't clean the allocated ctrlhdlr in case there is a failure, which causes memleak. Add v4l2ctrlhandlerfree to free the resource properly...
PT-2025-37905
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The hi846 init controls function does not properly free allocated memory ctrl hdlr in case of failure, leading to a memory leak. The issue is resolved by adding v4l2 ctrl handler free ...
DEBIAN-CVE-2023-53220
In the Linux kernel, the following vulnerability has been resolved: media: az6007: Fix null-ptr-deref in az6007i2cxfer In az6007i2cxfer, msg is controlled by user. When msgi.buf is null and msgi.len is zero, former checks on msgi.buf would be passed. Malicious data finally reach az6007i2cxfer. If...
UBUNTU-CVE-2023-53219
In the Linux kernel, the following vulnerability has been resolved: media: netupunidvb: fix use-after-free at deltimer When Universal DVB card is detaching, netupunidvbdmafini uses deltimer to stop dma-timeout timer. But when timer handler netupunidvbdmatimeout is running, deltimer could not stop...
UBUNTU-CVE-2025-39712
In the Linux kernel, the following vulnerability has been resolved: media: mt9m114: Fix deadlock in getframeinterval/setframeinterval Getting / Setting the frame interval using the V4L2 subdev pad ops getframeinterval/setframeinterval causes a deadlock, as the subdev state is locked in the 1 but...