What the vulnerability does

01Description

A NULL pointer dereference flaw was found in the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. The message from user space is not checked properly before transferring into the device. This flaw allows a local user to crash the system or potentially cause a denial of service.

Key dates

02Disclosure timeline

April 19, 2023 CVE published
March 19, 2025 Record updated