CVE-2024-43831
media: mediatek: vcodec: Handle invalid decoder vsi
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
17 Aug 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
In the Linux kernel, the following vulnerability has been resolved:
media: mediatek: vcodec: Handle invalid decoder vsi
Handle an invalid decoder vsi in vpu_dec_init to ensure the decoder vsi
is valid for future use.
Affected products
Linux · LinuxReferences
https://git.kernel.org/stable/c/1c109f23b271a02b9bb195c173fab41e3285a8dbhttps://git.kernel.org/stable/c/59d438f8e02ca641c58d77e1feffa000ff809e9fhttps://git.kernel.org/stable/c/cdf05ae76198c513836bde4eb55f099c44773280https://git.kernel.org/stable/c/dbd3e4adb98e50ede74f00b3fa956fa29ef95e6chttps://lists.debian.org/debian-lts-announce/2025/05/msg00045.html