Linux Kernel Nuvoton NPCM Video Error Check Vulnerability

Vulnerability

A vulnerability in the Linux kernel's handling of Nuvoton NPCM video initialization has been addressed. The issue arose because the function 'of_find_device_by_node()' returns NULL when it fails, rather than an error code. Consequently, the error checking logic needed to be revised to verify if the return value is NULL and, if so, set the appropriate error code to -ENODEV.

Impact

The vulnerability could lead to improper error handling, potentially allowing for incorrect assumptions about device availability or state during video processing operations.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Nuvoton NPCM Video Error Check Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating