A null pointer dereference issue was found in the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. The message from user space is not checked properly before transferring into the device. A local user could use this flaw to crash the system or potentially cause a denial of service. Reference: https://lore.kernel.org/linux-media/20221120065918.2160782-1-zhongbaisong@huawei.com/ https://lore.kernel.org/lkml/CAO4mrfcPHB5aQJO=mpqV+p8mPLNg-Fok0gw8gZ=zemAfMGTzMg@mail.gmail.com/