CVE-2022-50509

MEDIUM

Linux Kernel < 4.9.337 - NULL Pointer Dereference

Title source: rule

Description

In the Linux kernel, the following vulnerability has been resolved: media: coda: Add check for kmalloc As the kmalloc may return NULL pointer, it should be better to check the return value in order to avoid NULL poineter dereference, same as the others.

References (9)

[Patch] https://git.kernel.org/stable/c/0209e70ad496c1fcd85c2ec70e6736fd09f95d14

[Patch] https://git.kernel.org/stable/c/11e32126b3e56c3156fb610d793732acd2bdac4f

[Patch] https://git.kernel.org/stable/c/441c05485cf1a29eef05c1fd8281716815283315

[Patch] https://git.kernel.org/stable/c/6e5e5defdb8b0186312c2f855ace175aee6daf9b

[Patch] https://git.kernel.org/stable/c/7a2c66429b04e85fee44d6d9f455327bf23cf49c

[Patch] https://git.kernel.org/stable/c/aa17a252dbde432095e390e2092205d4debb12e1

[Patch] https://git.kernel.org/stable/c/ba9cc9e2035f7a45f5222543265daf7cd51f2530

[Patch] https://git.kernel.org/stable/c/d308c4a035b636756786af91e5f39f9d92d7d42a

[Patch] https://git.kernel.org/stable/c/d9b37ea8869e4e6da90c07a310d819a78cbd23d2

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 1.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-476

Status draft

Affected Products (9)

linux/linux_kernel < 4.9.337

linux/Kernel < 4.9.337linux

linux/Kernel < 4.14.303linux

linux/Kernel < 4.19.270linux

linux/Kernel < 5.4.229linux

linux/Kernel < 5.10.163linux

linux/Kernel < 5.15.86linux

linux/Kernel < 6.0.16linux

linux/Kernel < 6.1.2linux

Timeline

Published Oct 07, 2025

Tracked Since Feb 18, 2026