CVE-2022-50826
NULL Pointer Dereference in Linux ipu3-imgu Kernel Component
Publication date: 2025-12-30
Last updated on: 2025-12-30
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a NULL pointer dereference in the Linux kernel's ipu3-imgu driver, specifically in the function imgu_subdev_set_selection(). It occurs when the function calls v4l2_subdev_get_try_crop() and v4l2_subdev_get_try_compose() with a NULL subdevice state, leading to a NULL pointer dereference. This happens because the method first obtains pointers to both the "try" and "active" states before deciding which to use, but if the state passed in is NULL, it causes the issue. A similar problem was fixed in imgu_subdev_get_selection(), but the issue persisted in imgu_subdev_set_selection() until this fix was applied.
How can this vulnerability impact me? :
This vulnerability can cause a NULL pointer dereference in the Linux kernel, which typically results in a kernel crash or system instability. This could lead to denial of service (DoS) conditions where the affected system becomes unresponsive or crashes unexpectedly.