media: mediatek: vcodec: Fix VP8 stateless decoder smatch warning
CVE-2024-47753

5.5MEDIUM

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
21 October 2024

What is CVE-2024-47753?

In the Linux kernel, the following vulnerability has been resolved:

media: mediatek: vcodec: Fix VP8 stateless decoder smatch warning

Fix a smatch static checker warning on vdec_vp8_req_if.c. Which leads to a kernel crash when fb is NULL.

Affected Version(s)

Linux 7a7ae26fd458397d04421756dd19e5b8cf29a08f < 4e0713c79cf5d0b549fa855e230ade1ff83c27d7

Linux 7a7ae26fd458397d04421756dd19e5b8cf29a08f

Linux 7a7ae26fd458397d04421756dd19e5b8cf29a08f < 35cc704622b3a9bc02a4755d5ba80238eee3cdc2

References

https://git.kernel.org/stable/c/4e0713c79cf5d0b549fa855e2...
https://git.kernel.org/stable/c/dbe5b7373801c261f3ea11814...
https://git.kernel.org/stable/c/35cc704622b3a9bc02a4755d5...

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

.