CVE-2026-46313 PUBLISHED

media: intel/ipu6: fix error pointer dereference

Assigner: Linux
Reserved: 13.05.2026 Published: 08.06.2026 Updated: 14.06.2026

In the Linux kernel, the following vulnerability has been resolved:

media: intel/ipu6: fix error pointer dereference

In a error path isp->psys is confirmed to be an error pointer not NULL so this condition is true and the error pointer is dereferenced. So isp-psys should be set to NULL before going to out_ipu6_bus_del_devices.

Detected by Smatch: drivers/media/pci/intel/ipu6/ipu6.c:690 ipu6_pci_probe() error: 'isp->psys' dereferencing possible ERR_PTR()

[Sakari Ailus: Fix commit message.]

Product Status

Vendor	Linux
Product	Linux
Versions	Default: unaffected affected from 25fedc021985a66a357a599ab771d6b495b6f78c to fad134c446189e9bb48cea1a5ca426d2889a9c71 (excl.) affected from 25fedc021985a66a357a599ab771d6b495b6f78c to f43e30646fc93799f3f48530d0ccbd52902c0541 (excl.) affected from 25fedc021985a66a357a599ab771d6b495b6f78c to c352f90e093ae49902e47f41579e1aa41899ff64 (excl.) affected from 25fedc021985a66a357a599ab771d6b495b6f78c to 8dd088b8b106f7b119664f965b691785998edcfb (excl.)

Vendor	Linux
Product	Linux
Versions	Default: affected Version 6.10 is affected unaffected from 0 to 6.10 (excl.) unaffected from 6.12.90 to 6.12.* (incl.) unaffected from 6.18.32 to 6.18.* (incl.) unaffected from 7.0.9 to 7.0.* (incl.) unaffected from 7.1 to * (incl.)

CVE-2026-46313 PUBLISHED

media: intel/ipu6: fix error pointer dereference

Product Status

References