Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/05/27 9:3 p.m.12 views

CVE-2026-46011

A flaw was found in the Linux kernel's MediaTek JPEG mtk-jpeg driver. This use-after-free vulnerability arises from a race condition where the driver frees memory while it may still be in use by a work queue. This can allow a local attacker to cause system instability, leading to a denial of...

7.8CVSS6AI score0.00125EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/05/27 12:56 p.m.10 views

CVE-2026-46011

In the Linux kernel, the following vulnerability has been resolved: media: mtk-jpeg: fix use-after-free in release path due to uncancelled work The mtkjpegrelease function frees the context structure ctx without first cancelling any pending or running work in ctx-jpegwork. This creates a race...

7.8CVSS5.7AI score0.00125EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.21 views

PT-2026-43878

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.11-1.1 Description A use-after-free issue exists in the mtk jpeg release function. The function frees the context structure ctx without cancelling pending or running work in ctx-jpeg work. This creates a race...

7.8CVSS5.8AI score0.00125EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.6 views

PT-2025-53180

In the Linux kernel, the following vulnerability has been resolved: media: mtk-jpeg: Fix use after free bug due to uncanceled work In mtk jpeg probe, &jpeg-job timeout work is bound with mtk jpeg job timeout work. Then mtk jpeg dec device run and mtk jpeg enc device run may be called to start the...

6.4AI score0.00032EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/11/23 12:0 a.m.4 views

PT-2023-9551 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a use-after-free bug in the Linux kernel's mtk-jpeg component, specifically due to error path handling in mtk jpeg dec device run. This bug can be triggered in...

9.1CVSS6.6AI score0.78388EPSS
Exploits4References1336
CNVD
CNVD
added 2021/03/02 12:0 a.m.8 views

MediaTek jpeg Buffer Overflow Vulnerability

MediaTek jpeg is an application chip from MediaTek China. It provides optimized image processing. MediaTek jpeg suffers from a buffer overflow vulnerability that originates from incorrect input validation and can be exploited by an attacker to write out-of-bounds...

7.2CVSS7.3AI score0.00134EPSS
Exploits0References1
Rows per page
Query Builder