media: chips-media: wave5: Fix Null reference while testing fluster

7.8 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

In the Linux kernel, the following vulnerability has been resolved:

media: chips-media: wave5: Fix Null reference while testing fluster

When multi instances are created/destroyed, many interrupts happens
and structures for decoder are removed.
"struct vpu_instance" this structure is shared for all flow in the decoder,
so if the structure is not protected by lock, Null dereference
could happens sometimes.
IRQ Handler was spilt to two phases and Lock was added as well.

Basic Information

ID CVE-2026-43263

Source Linux

Published May 6, 2026 at 11:28

Modified May 8, 2026 at 12:41

Affected Product

Vendor Linux

Product Linux

Version 9707a6254a8a6b978bde811a44fe07d86c229d1c

Affected Versions Linux Linux 9707a6254a8a6b978bde811a44fe07d86c229d1c
Linux Linux 9707a6254a8a6b978bde811a44fe07d86c229d1c
Linux Linux 9707a6254a8a6b978bde811a44fe07d86c229d1c
Linux Linux 6.8

References

{
    "lastseen": "",
    "description": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: chips-media: wave5: Fix Null reference while testing fluster\n\nWhen multi instances are created/destroyed, many interrupts happens\nand structures for decoder are removed.\n\"struct vpu_instance\" this structure is shared for all flow in the decoder,\nso if the structure is not protected by lock, Null dereference\ncould happens sometimes.\nIRQ Handler was spilt to two phases and Lock was added as well.",
    "published": "2026-05-06T11:28:50.188Z",
    "modified": "2026-05-08T12:41:40.920Z",
    "type": "cve",
    "title": "media: chips-media: wave5: Fix Null reference while testing fluster",
    "source": "Linux",
    "references": "https://git.kernel.org/stable/c/ea316b784fe6a61b29131c98cddb24e651b1dcbc\nhttps://git.kernel.org/stable/c/d12bcf183ec7da4305d848068d15f18044eaf62a\nhttps://git.kernel.org/stable/c/e66ff2b08e4ee1c4d3b84f24818e5bcc178cc3a4",
    "id": "CVE-2026-43263",
    "bulletinFamily": "",
    "cwe": null,
    "cvelist": null,
    "sourceData": "Linux Linux 9707a6254a8a6b978bde811a44fe07d86c229d1c\nLinux Linux 9707a6254a8a6b978bde811a44fe07d86c229d1c\nLinux Linux 9707a6254a8a6b978bde811a44fe07d86c229d1c\nLinux Linux 6.8",
    "sourceHref": "",
    "cvss": {
        "score": 7.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Linux",
    "version": "9707a6254a8a6b978bde811a44fe07d86c229d1c",
    "vendor": "Linux",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

media: chips-media: wave5: Fix Null reference while testing fluster_CVE-2026-43263

Description

Basic Information

Affected Product

References

💭 Join the Security Discussion ❌ Cancel Reply