Linux Kernel Out-of-Bounds Access Vulnerability in IMX JPEG Media Component

Vulnerability

A vulnerability in the Linux kernel's IMX JPEG media component allows for out-of-bounds array access. This issue arises when an error occurs while parsing JPEG files, leading to the use of an incorrect slot number. As a result, the driver modifies the 'num_domains' parameter, which is linked to 'slot_data' in the 'mxc_jpeg_dev' structure. This improper handling prevents the driver from detaching the power management domain during module removal, causing a kernel panic when attempting to reload the module.

Impact

Exploitation of this vulnerability leads to a kernel panic, causing system instability and disruption of services.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Out-of-Bounds Access Vulnerability in IMX JPEG Media Component

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating