Linux Kernel Coda Media NULL Pointer Dereference Vulnerability

A vulnerability in the Linux kernel's media subsystem, specifically within the Coda video decoder driver, has been addressed. The issue arose because the function 'coda_iram_alloc' could return a NULL pointer, leading to a potential NULL pointer dereference. This vulnerability affected several versions of the Linux kernel.

Impact

Exploitation of this vulnerability could lead to a NULL pointer dereference, causing a crash or undefined behavior in the kernel.

Reproduction

The vulnerability can be reproduced by using the Coda video decoder in the Linux kernel's media subsystem. The 'coda_iram_alloc' function will be called to allocate memory, and if it returns NULL, the absence of a proper check can lead to a NULL pointer dereference. This scenario can be triggered by certain video decoding operations that require IRAM buffer allocations.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for upgrading the Linux kernel can be found in the official Linux kernel documentation.