20 matches found
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper setting of vmaflags in the vb2dmasgmmap function within media videobuf2. This...
Astra Linux – Vulnerability in Linux 5.10, Linux
In the Linux kernel, the following vulnerability has been resolved: media: stk1160: If the start stream fails, the buffers should be returned with the state “VB2BUFSTATEQUEUED”. Currently, buffers are returned with the state “VB2BUFSTATEERROR”, which is incorrect. This issue has been fixed. This...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: “Revert ‘media: iris’: Add a sanity check for stopping streaming.” This change is reflected in the commit ad699fa78b59241c9d71a8cafb51525f3dab04d4. The check that previously skipped “stopstreaming” when the instance was in...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: media: vsp1: Replace vb2isstreaming with vb2startstreamingcalled. The vsp1 driver uses the vb2isstreaming function in its .bufqueue handler to check whether the .startstreaming operation has been called. It then decides whether t...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Return queued buffers on startstreaming failure Buffers are returned if streaming fails to start due to a uvcpmget error. This bug may be responsible for the warning I received when running: while :; do yavta -c3...
SUSE CVE-2026-43151
In the Linux kernel, the following vulnerability has been resolved: Revert "media: iris: Add sanity check for stop streaming" This reverts commit ad699fa78b59241c9d71a8cafb51525f3dab04d4. Revert the check that skipped stopstreaming when the instance was in IRISINSTERROR, as it caused multiple...
PT-2026-37491
In the Linux kernel, the following vulnerability has been resolved: Revert "media: iris: Add sanity check for stop streaming" This reverts commit ad699fa78b59241c9d71a8cafb51525f3dab04d4. Revert the check that skipped stop streaming when the instance was in IRIS INST ERROR, as it caused multiple...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: Media: usbtv: Locked resolution during streaming When a program is streaming e.g., ffplay and another program changes the TV standard from NTSC to PAL, the kernel crashes due to attempting to access unmapped memory. Changing from...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004850)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004850 advisory. In the Linux kernel, the following vulnerability has been resolved: media: cx88: Fix a null-ptr-deref bug in bufferprepare When the driver calls cx88riscbuffer to...
Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991210)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991210 advisory. In the Linux kernel, the following vulnerability has been resolved: media: stk1160: If start stream fails, return buffers with VB2BUFSTATEQUEUED If the callback...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: media: ti: j721e-csi2rx: fix listdel corruption If the ticsi2rxstartdma function fails in the ticsi2rxdmacallback, the buffer is marked as completed with VB2BUFSTATEERROR, but is not removed from the DMA queue. This causes the sa...
CVE-2023-53497
In the Linux kernel, the following vulnerability has been resolved: media: vsp1: Replace vb2isstreaming with vb2startstreamingcalled The vsp1 driver uses the vb2isstreaming function in its .bufqueue handler to check if the .startstreaming operation has been called, and decide whether to just add...
PT-2025-40204
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.2.0-rc1-00023-g6c94e2e99343 Description The vsp1 driver in the Linux kernel incorrectly uses the vb2 is streaming function to determine if the .start streaming operation has been called. A change in the vb2 cor...
SUSE CVE-2025-39714
In the Linux kernel, the following vulnerability has been resolved: media: usbtv: Lock resolution while streaming When an program is streaming ffplay and another program qv4l2 changes the TV standard from NTSC to PAL, the kernel crashes due to trying to copy to unmapped memory. Changing from NTSC...
UBUNTU-CVE-2025-39714
In the Linux kernel, the following vulnerability has been resolved: media: usbtv: Lock resolution while streaming When an program is streaming ffplay and another program qv4l2 changes the TV standard from NTSC to PAL, the kernel crashes due to trying to copy to unmapped memory. Changing from NTSC...
CVE-2025-39714 media: usbtv: Lock resolution while streaming
In the Linux kernel, the following vulnerability has been resolved: media: usbtv: Lock resolution while streaming When an program is streaming ffplay and another program qv4l2 changes the TV standard from NTSC to PAL, the kernel crashes due to trying to copy to unmapped memory. Changing from NTSC...
CVE-2025-39714
CVE-2025-39714 is a Linux kernel issue affecting the media: usbtv path. When a streaming application (e.g., ffplay) is active and another process changes the TV standard from NTSC to PAL, the kernel can crash due to copying into unmapped memory. The root cause is that increasing the usbtv struct’...
CVE-2024-50291 media: dvb-core: add missing buffer index check
In the Linux kernel, the following vulnerability has been resolved: media: dvb-core: add missing buffer index check dvbvb2expbuf didn't check if the given buffer index was for a valid buffer. Add this check...
openSUSE Security Update : the Linux Kernel (openSUSE-2017-716) (Stack Clash)
The openSUSE Leap 42.2 kernel was updated to 4.4.72 to receive various security and bugfixes. The following security bugs were fixed : - CVE-2017-1000364: An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.2 kernel was updated to 4.4.72 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-1000364: An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be...