6 matches found
CVE-2026-46011
A flaw was found in the Linux kernel's MediaTek JPEG mtk-jpeg driver. This use-after-free vulnerability arises from a race condition where the driver frees memory while it may still be in use by a work queue. This can allow a local attacker to cause system instability, leading to a denial of...
CVE-2026-46011
In the Linux kernel, the following vulnerability has been resolved: media: mtk-jpeg: fix use-after-free in release path due to uncancelled work The mtkjpegrelease function frees the context structure ctx without first cancelling any pending or running work in ctx-jpegwork. This creates a race...
PT-2026-43878
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.11-1.1 Description A use-after-free issue exists in the mtk jpeg release function. The function frees the context structure ctx without cancelling pending or running work in ctx-jpeg work. This creates a race...
PT-2025-53180
In the Linux kernel, the following vulnerability has been resolved: media: mtk-jpeg: Fix use after free bug due to uncanceled work In mtk jpeg probe, &jpeg-job timeout work is bound with mtk jpeg job timeout work. Then mtk jpeg dec device run and mtk jpeg enc device run may be called to start the...
PT-2023-9551 · Linux +5 · Linux Kernel +5
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a use-after-free bug in the Linux kernel's mtk-jpeg component, specifically due to error path handling in mtk jpeg dec device run. This bug can be triggered in...
MediaTek jpeg Buffer Overflow Vulnerability
MediaTek jpeg is an application chip from MediaTek China. It provides optimized image processing. MediaTek jpeg suffers from a buffer overflow vulnerability that originates from incorrect input validation and can be exploited by an attacker to write out-of-bounds...