CVE-2026-46235
saa7164 Kernel Memory Mapping Failure Handling
Publication date: 2026-05-28
Last updated on: 2026-05-28
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is related to the Linux kernel's media driver for saa7164 devices. It involves missing checks for the return values of the ioremap function in the saa7164_dev_setup() routine.
If ioremap fails when mapping BAR0 or BAR2 memory regions, the driver did not previously handle this failure properly, which could lead to null pointer dereferences.
The fix adds checks for these ioremap return values and ensures that if the mapping fails, the already allocated PCI memory regions are released, the device is removed from the global list, the device count is decremented, and the function returns an error code (-ENODEV).
This prevents potential crashes or undefined behavior caused by dereferencing null pointers and ensures proper cleanup on memory mapping failures.
How can this vulnerability impact me? :
If this vulnerability is present, a failure in memory mapping (ioremap) could lead to null pointer dereferences within the Linux kernel's saa7164 media driver.
Such null pointer dereferences can cause kernel crashes or system instability, potentially leading to denial of service conditions.
Proper handling of these failures prevents unexpected system behavior and improves system reliability.