CVE-2022-49247

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-49247
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49247.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-49247
Downstream
Related
Published
2025-02-26T01:56:06.224Z
Modified
2026-03-20T12:22:17.548648Z
Summary
media: stk1160: If start stream fails, return buffers with VB2_BUF_STATE_QUEUED
Details

In the Linux kernel, the following vulnerability has been resolved:

media: stk1160: If start stream fails, return buffers with VB2BUFSTATE_QUEUED

If the callback 'startstreaming' fails, then all queued buffers in the driver should be returned with state 'VB2BUFSTATEQUEUED'. Currently, they are returned with 'VB2BUFSTATE_ERROR' which is wrong. Fix this. This also fixes the warning:

[ 65.583633] WARNING: CPU: 5 PID: 593 at drivers/media/common/videobuf2/videobuf2-core.c:1612 vb2startstreaming+0xd4/0x160 [videobuf2common] [ 65.585027] Modules linked in: sndusbaudio sndhwdep sndusbmidilib sndrawmidi sndsochdmicodec dwhdmii2saudio saa7115 stk1160 videobuf2vmalloc videobuf2memops videobuf2v4l2 videobuf2common videodev mc crct10difce panfrost sndsocsimplecard sndsocaudiographcard sndsocspdiftx sndsocsimplecardutils gpusched phyrockchippcie sndsocrockchipi2s rockchipdrm analogixdp dwmipidsi dwhdmi cec drmkmshelper drm rtcrk808 rockchipsaradc industrialiotriggeredbuffer kfifobuf rockchipthermal pcierockchiphost iptables xtables ipv6 [ 65.589383] CPU: 5 PID: 593 Comm: v4l2src0:src Tainted: G W 5.16.0-rc4-62408-g32447129cb30-dirty #14 [ 65.590293] Hardware name: Radxa ROCK Pi 4B (DT) [ 65.590696] pstate: 80000005 (Nzcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 65.591304] pc : vb2startstreaming+0xd4/0x160 [videobuf2common] [ 65.591850] lr : vb2startstreaming+0x6c/0x160 [videobuf2common] [ 65.592395] sp : ffff800012bc3ad0 [ 65.592685] x29: ffff800012bc3ad0 x28: 0000000000000000 x27: ffff800012bc3cd8 [ 65.593312] x26: 0000000000000000 x25: ffff00000d8a7800 x24: 0000000040045612 [ 65.593938] x23: ffff800011323000 x22: ffff800012bc3cd8 x21: ffff00000908a8b0 [ 65.594562] x20: ffff00000908a8c8 x19: 00000000fffffff4 x18: ffffffffffffffff [ 65.595188] x17: 000000040044ffff x16: 00400034b5503510 x15: ffff800011323f78 [ 65.595813] x14: ffff000013163886 x13: ffff000013163885 x12: 00000000000002ce [ 65.596439] x11: 0000000000000028 x10: 0000000000000001 x9 : 0000000000000228 [ 65.597064] x8 : 0101010101010101 x7 : 7f7f7f7f7f7f7f7f x6 : fefefeff726c5e78 [ 65.597690] x5 : ffff800012bc3990 x4 : 0000000000000000 x3 : ffff000009a34880 [ 65.598315] x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff000007cd99f0 [ 65.598940] Call trace: [ 65.599155] vb2startstreaming+0xd4/0x160 [videobuf2common] [ 65.599672] vb2corestreamon+0x17c/0x1a8 [videobuf2common] [ 65.600179] vb2streamon+0x54/0x88 [videobuf2v4l2] [ 65.600619] vb2ioctlstreamon+0x54/0x60 [videobuf2v4l2] [ 65.601103] v4lstreamon+0x3c/0x50 [videodev] [ 65.601521] __videodoioctl+0x1a4/0x428 [videodev] [ 65.601977] video_usercopy+0x320/0x828 [videodev] [ 65.602419] videoioctl2+0x3c/0x58 [videodev] [ 65.602830] v4l2ioctl+0x60/0x90 [videodev] [ 65.603227] _arm64sysioctl+0xa8/0xe0 [ 65.603576] invokesyscall+0x54/0x118 [ 65.603911] el0svccommon.constprop.3+0x84/0x100 [ 65.604332] doel0svc+0x34/0xa0 [ 65.604625] el0svc+0x1c/0x50 [ 65.604897] el0t64synchandler+0x88/0xb0 [ 65.605264] el0t64sync+0x16c/0x170 [ 65.605587] ---[ end trace 578e0ba07742170d ]---

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49247.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
8ac456495a33d9466076fea94594181ceefb76d9
Fixed
03054f22d5abd80ad89547512c2bfbfb2714d3ed
Fixed
f04a520a422222fc921bf035dc67414c500a286a
Fixed
3cc050df73e3d973f1870a8dc0e177e77670bc7f
Fixed
4d68603cc4382174bc1e7d532e10675c48c6b257
Fixed
a09e9882800fdfc5aab93f77c3f0132071d2191b
Fixed
2874122ca4ca74adec72d6d6bf8828228ec20f15
Fixed
f66e6fd1488d26229f11d86616de1b658c70fa8a
Fixed
fbe04b49a54e31f4321d632270207f0e6304cd16

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49247.json"