CVE-2022-48945

media: vivid: fix compose size exceed boundary

Description

In the Linux kernel, the following vulnerability has been resolved: media: vivid: fix compose size exceed boundary syzkaller found a bug: BUG: unable to handle page fault for address: ffffc9000a3b1000 #PF: supervisor write access in kernel mode #PF: error_code(0x0002) - not-present page PGD 100000067 P4D 100000067 PUD 10015f067 PMD 1121ca067 PTE 0 Oops: 0002 [#1] PREEMPT SMP CPU: 0 PID: 23489 Comm: vivid-000-vid-c Not tainted 6.1.0-rc1+ #512 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.13.0-1ubuntu1.1 04/01/2014 RIP: 0010:memcpy_erms+0x6/0x10 [...] Call Trace: <TASK> ? tpg_fill_plane_buffer+0x856/0x15b0 vivid_fillbuff+0x8ac/0x1110 vivid_thread_vid_cap_tick+0x361/0xc90 vivid_thread_vid_cap+0x21a/0x3a0 kthread+0x143/0x180 ret_from_fork+0x1f/0x30 </TASK> This is because we forget to check boundary after adjust compose->height int V4L2_SEL_TGT_CROP case. Add v4l2_rect_map_inside() to fix this problem for this case.

N/A
CVSS
Severity:
EPSS 0.10%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/8c0ee15d9a102c732d0745566d254040085d5663
https://git.kernel.org/stable/c/5edc3604151919da8da0fb092b71d7dce07d848a
https://git.kernel.org/stable/c/9c7fba9503b826f0c061d136f8f0c9f953ed18b9
https://git.kernel.org/stable/c/54f259906039dbfe46c550011409fa16f72370f6
https://git.kernel.org/stable/c/f9d19f3a044ca651b0be52a4bf951ffe74259b9f
https://git.kernel.org/stable/c/ab54081a2843aefb837812fac5488cc8f1696142
https://git.kernel.org/stable/c/ccb5392c4fea0e7d9f7ab35567e839d74cb3998b
https://git.kernel.org/stable/c/2f558c5208b0f70c8140e08ce09fcc84da48e789
https://git.kernel.org/stable/c/94a7ad9283464b75b12516c5512541d467cefcf8

Frequently Asked Questions

What is the severity of CVE-2022-48945?
CVE-2022-48945 has not yet been assigned a CVSS score.
How to fix CVE-2022-48945?
To fix CVE-2022-48945, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-48945 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2022-48945 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-48945?
CVE-2022-48945 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.