{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2022-50757","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-12-24T13:02:21.545Z","datePublished":"2025-12-24T13:05:50.399Z","dateUpdated":"2026-05-11T19:24:55.896Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T19:24:55.896Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: camss: Clean up received buffers on failed start of streaming\n\nIt is required to return the received buffers, if streaming can not be\nstarted. For instance media_pipeline_start() may fail with EPIPE, if\na link validation between entities is not passed, and in such a case\na user gets a kernel warning:\n\n  WARNING: CPU: 1 PID: 520 at drivers/media/common/videobuf2/videobuf2-core.c:1592 vb2_start_streaming+0xec/0x160\n  <snip>\n  Call trace:\n   vb2_start_streaming+0xec/0x160\n   vb2_core_streamon+0x9c/0x1a0\n   vb2_ioctl_streamon+0x68/0xbc\n   v4l_streamon+0x30/0x3c\n   __video_do_ioctl+0x184/0x3e0\n   video_usercopy+0x37c/0x7b0\n   video_ioctl2+0x24/0x40\n   v4l2_ioctl+0x4c/0x70\n\nThe fix is to correct the error path in video_start_streaming() of camss."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/media/platform/qcom/camss/camss-video.c"],"versions":[{"version":"0ac2586c410fe00d58dd09bf270a22f25d5287b8","lessThan":"75954cde8a5ca84003b24b6bf83197240935bd74","status":"affected","versionType":"git"},{"version":"0ac2586c410fe00d58dd09bf270a22f25d5287b8","lessThan":"04c734c716a97f1493b1edac41316aaed1d2a9d9","status":"affected","versionType":"git"},{"version":"0ac2586c410fe00d58dd09bf270a22f25d5287b8","lessThan":"fe443b3fe36cd23d4f5dc6d825d34322e7c89f0c","status":"affected","versionType":"git"},{"version":"0ac2586c410fe00d58dd09bf270a22f25d5287b8","lessThan":"3d5cab726e3b370fea1b6e67183f0e13c409ce5c","status":"affected","versionType":"git"},{"version":"0ac2586c410fe00d58dd09bf270a22f25d5287b8","lessThan":"d1c44928bb3ca0ec88e7ad5937a2a26a259aede6","status":"affected","versionType":"git"},{"version":"0ac2586c410fe00d58dd09bf270a22f25d5287b8","lessThan":"f05326a440dc31b91b688b2f3f15b7347894a50b","status":"affected","versionType":"git"},{"version":"0ac2586c410fe00d58dd09bf270a22f25d5287b8","lessThan":"24df4fa3e795fb4b15fd4d3c036596e0978d265a","status":"affected","versionType":"git"},{"version":"0ac2586c410fe00d58dd09bf270a22f25d5287b8","lessThan":"c8f3582345e6a69da65ab588f7c4c2d1685b0e80","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/media/platform/qcom/camss/camss-video.c"],"versions":[{"version":"4.14","status":"affected"},{"version":"0","lessThan":"4.14","status":"unaffected","versionType":"semver"},{"version":"4.14.303","lessThanOrEqual":"4.14.*","status":"unaffected","versionType":"semver"},{"version":"4.19.270","lessThanOrEqual":"4.19.*","status":"unaffected","versionType":"semver"},{"version":"5.4.229","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.163","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.86","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.0.16","lessThanOrEqual":"6.0.*","status":"unaffected","versionType":"semver"},{"version":"6.1.2","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.2","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.14","versionEndExcluding":"4.14.303"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.14","versionEndExcluding":"4.19.270"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.14","versionEndExcluding":"5.4.229"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.14","versionEndExcluding":"5.10.163"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.14","versionEndExcluding":"5.15.86"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.14","versionEndExcluding":"6.0.16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.14","versionEndExcluding":"6.1.2"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.14","versionEndExcluding":"6.2"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/75954cde8a5ca84003b24b6bf83197240935bd74"},{"url":"https://git.kernel.org/stable/c/04c734c716a97f1493b1edac41316aaed1d2a9d9"},{"url":"https://git.kernel.org/stable/c/fe443b3fe36cd23d4f5dc6d825d34322e7c89f0c"},{"url":"https://git.kernel.org/stable/c/3d5cab726e3b370fea1b6e67183f0e13c409ce5c"},{"url":"https://git.kernel.org/stable/c/d1c44928bb3ca0ec88e7ad5937a2a26a259aede6"},{"url":"https://git.kernel.org/stable/c/f05326a440dc31b91b688b2f3f15b7347894a50b"},{"url":"https://git.kernel.org/stable/c/24df4fa3e795fb4b15fd4d3c036596e0978d265a"},{"url":"https://git.kernel.org/stable/c/c8f3582345e6a69da65ab588f7c4c2d1685b0e80"}],"title":"media: camss: Clean up received buffers on failed start of streaming","x_generator":{"engine":"bippy-1.2.0"}}}}