CVE-2022-50786

Summary

In the Linux kernel, the following vulnerability has been resolved:

media: s5p-mfc: Clear workbit to handle error condition

During error on CLOSE_INSTANCE command, ctx_work_bits was not getting cleared. During consequent mfc execution NULL pointer dereferencing of this context led to kernel panic. This patch fixes this issue by making sure to clear ctx_work_bits always.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux818cd91ab8c6e42c2658c8e61f8462637c6f586b < 12242bd13ce68acd571b2cce6ab302e154e8a4eeaffected
LinuxLinux818cd91ab8c6e42c2658c8e61f8462637c6f586b < 640075400c7c577b0f5369b935e22a588773fafaaffected
LinuxLinux818cd91ab8c6e42c2658c8e61f8462637c6f586b < 8ff64edf9d16e8c277dcc8189794763624e6b4b8affected
LinuxLinux818cd91ab8c6e42c2658c8e61f8462637c6f586b < ff27800c0a6d81571671b33f696109804d015409affected
LinuxLinux818cd91ab8c6e42c2658c8e61f8462637c6f586b < 09c1fbbe532758e4046c20829f4c0c50b99332dcaffected
LinuxLinux818cd91ab8c6e42c2658c8e61f8462637c6f586b < bd1b72f0c39a0d791a087b4e643701a48328ba8eaffected
LinuxLinux818cd91ab8c6e42c2658c8e61f8462637c6f586b < d3f3c2fe54e30b0636496d842ffbb5ad3a547f9baffected
LinuxLinux3.16affected
LinuxLinux0 < 3.16unaffected
LinuxLinux4.19.270 <= 4.19.*unaffected
LinuxLinux5.4.229 <= 5.4.*unaffected
LinuxLinux5.10.163 <= 5.10.*unaffected
LinuxLinux5.15.87 <= 5.15.*unaffected
LinuxLinux6.0.18 <= 6.0.*unaffected
LinuxLinux6.1.4 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

References