An issue was discovered in the Linux kernel through 6.1-rc8. coda9_jpeg_start_encoding in drivers/media/platform/chips-media/coda-jpeg.c lacks check of the return value of kmalloc() and will cause the NULL Pointer Dereference. Reference: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f30ce3d3760b22ee33c8d9c2e223764ad30bdc5f
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 2169475]
There is one more very similar issue: coda_start_encoding in drivers/media/platform/chips-media/coda-bit.c lacks check of the return value of kmalloc() and will cause the NULL Pointer Dereference. Reference: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=6e5e5defdb8b0186312c2f855ace175aee6daf9b
There is one more issue for same part of source code: coda_setup_iram in drivers/media/platform/chips-media/coda-bit.c lacks check of the return value of coda_iram_alloc() and will cause the NULL Pointer Dereference. Reference: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=6b8082238fb8bb20f67e46388123e67a5bbc558d
This was fixed for Fedora with the 6.0.16 stable kernel updates.