CVE-2024-35919

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-35919
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-35919.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-35919
Downstream
Published
2024-05-19T10:10:31.707Z
Modified
2025-11-20T04:09:09.915402Z
Severity
  • 7.0 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
media: mediatek: vcodec: adding lock to protect encoder context list
Details

In the Linux kernel, the following vulnerability has been resolved:

media: mediatek: vcodec: adding lock to protect encoder context list

Add a lock for the ctxlist, to avoid accessing a NULL pointer within the 'vpuencipihandler' function when the ctx_list has been deleted due to an unexpected behavior on the SCP IP block.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
1972e32431ed14682909ad568c6fd660572ae6ab
Fixed
41671f0c0182b2bae74ca7e3b0f155559e3e2fc5
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
1972e32431ed14682909ad568c6fd660572ae6ab
Fixed
51c84a8aac6e3b59af2b0e92ba63cabe2e641a2d
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
1972e32431ed14682909ad568c6fd660572ae6ab
Fixed
afaaf3a0f647a24a7bf6a2145d8ade37baaf75ad

Affected versions

v6.*

v6.5
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.3
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.8.1
v6.8.2
v6.8.3
v6.8.4
v6.8.5
v6.9-rc1

Database specific

vanir_signatures

[
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/media/platform/mediatek/vcodec/encoder/mtk_vcodec_enc_drv.c"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@afaaf3a0f647a24a7bf6a2145d8ade37baaf75ad",
        "digest": {
            "line_hashes": [
                "145711967754554563930203081450345449180",
                "260028994016108861202360759806944803577",
                "314499044852182539093206585196648911032",
                "71574768774967792570959914859261349939",
                "323247138705282438598753900522201977176",
                "26428649992703644781563292274056437919",
                "274727983037985244675630169828653390803",
                "263106660131588920455213319001689257687",
                "279894980074277709711896793447601522069",
                "34489910839001051867186726076364839450",
                "249744388540337616883688418550749411059",
                "103420193530629459446978822788622425341"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2024-35919-0f3f8277"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/media/platform/mediatek/vcodec/encoder/mtk_vcodec_enc_drv.c",
            "function": "fops_vcodec_open"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@afaaf3a0f647a24a7bf6a2145d8ade37baaf75ad",
        "digest": {
            "length": 1904.0,
            "function_hash": "218002947796136846502454429333776715443"
        },
        "id": "CVE-2024-35919-183fde10"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/media/platform/mediatek/vcodec/common/mtk_vcodec_fw_vpu.c"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@afaaf3a0f647a24a7bf6a2145d8ade37baaf75ad",
        "digest": {
            "line_hashes": [
                "28264473579874445798458454327109967162",
                "276398722502917388022586170395205247165",
                "62975130083541543761709383523465795730",
                "290165607648059968988727529683841753325",
                "286654773418961346594916534262710290427",
                "20339258199910500749801636622219257466",
                "82585803214609845641709910685759882426",
                "280690561733558603561679754307041552877",
                "165326498627472489378327012667895091992"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2024-35919-28508959"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/media/platform/mediatek/vcodec/common/mtk_vcodec_fw_vpu.c",
            "function": "mtk_vcodec_vpu_reset_enc_handler"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@afaaf3a0f647a24a7bf6a2145d8ade37baaf75ad",
        "digest": {
            "length": 378.0,
            "function_hash": "59475560263901261095657143937954791864"
        },
        "id": "CVE-2024-35919-3bc41035"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/media/platform/mediatek/vcodec/encoder/venc_vpu_if.c",
            "function": "vpu_enc_check_ap_inst"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@afaaf3a0f647a24a7bf6a2145d8ade37baaf75ad",
        "digest": {
            "length": 246.0,
            "function_hash": "174464792292754686195608430766785105668"
        },
        "id": "CVE-2024-35919-4c7a14b0"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/media/platform/mediatek/vcodec/encoder/venc_vpu_if.c"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@afaaf3a0f647a24a7bf6a2145d8ade37baaf75ad",
        "digest": {
            "line_hashes": [
                "176296717481608513063980972433990540599",
                "14109933758049653100952022235420385456",
                "25328540450405144604939103692405641143",
                "24702933896002141065554031122294082800",
                "293441550668723431610226360632853070800",
                "169317480244526058487192841262079353247",
                "51451968982486331463192885396993777778",
                "201541717412904143452260414197344225132",
                "21923306668300774721649891076662916908"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2024-35919-69e63702"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/media/platform/mediatek/vcodec/encoder/mtk_vcodec_enc_drv.h"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@afaaf3a0f647a24a7bf6a2145d8ade37baaf75ad",
        "digest": {
            "line_hashes": [
                "88026083148804901825029146691830795243",
                "126803117189129861164934348997021789134",
                "273637620886228734287806677574444333464",
                "190215805978170738333125330400578769370",
                "116983421022973660650226663891578941456",
                "114264347748784971637441060481619378631",
                "141511677084369739590919258825286416301"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2024-35919-8446be20"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/media/platform/mediatek/vcodec/encoder/mtk_vcodec_enc_drv.c",
            "function": "mtk_vcodec_probe"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@afaaf3a0f647a24a7bf6a2145d8ade37baaf75ad",
        "digest": {
            "length": 3747.0,
            "function_hash": "192214483524888557938928877310919482430"
        },
        "id": "CVE-2024-35919-f0463f70"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/media/platform/mediatek/vcodec/encoder/mtk_vcodec_enc_drv.c",
            "function": "fops_vcodec_release"
        },
        "signature_version": "v1",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@afaaf3a0f647a24a7bf6a2145d8ade37baaf75ad",
        "digest": {
            "length": 444.0,
            "function_hash": "133175126036088124847169086817785375327"
        },
        "id": "CVE-2024-35919-fa15b253"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.6.0
Fixed
6.6.27
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.8.6