CVE-2022-49506
MEDIUM EPSS 14.9%
Published Feb 26, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 1w ago
Description
In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Add vblank register/unregister callback functions We encountered a kernel panic issue that callback data will be NULL when it's using in ovl irq handler. There is a timing issue between mtk_disp_ovl_irq_handler() and mtk_ovl_disable_vblank(). To resolve this issue, we use the flow to register/unregister vblank cb: - Register callback function and callback data when crtc creates. - Unregister callback function and callback data when crtc destroies. With this solution, we can assure callback data will not be NULL when vblank is disable.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High
Threat Intelligence
EPSS Exploit Probability
14.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 3
References 4
- git.kernel.org https://git.kernel.org/stable/c/3a4027b5971fe2a94e32754f007d9d3c12c68ad1
- git.kernel.org https://git.kernel.org/stable/c/8a265d9838bc3c63579002d55c2b2c655c4f8f26
- git.kernel.org https://git.kernel.org/stable/c/8a2dbdeccef6de47565638abdf3c25f41cdffc37
- git.kernel.org https://git.kernel.org/stable/c/b74d921b900b6ce38c6247c0a1c86be9f3746493
Remediation
- git.kernel.org https://git.kernel.org/stable/c/3a4027b5971fe2a94e32754f007d9d3c12c68ad1
- git.kernel.org https://git.kernel.org/stable/c/8a265d9838bc3c63579002d55c2b2c655c4f8f26
- git.kernel.org https://git.kernel.org/stable/c/8a2dbdeccef6de47565638abdf3c25f41cdffc37
- git.kernel.org https://git.kernel.org/stable/c/b74d921b900b6ce38c6247c0a1c86be9f3746493