### [CVE-2024-43833](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43833)
![](https://img.shields.io/static/v1?label=Product&message=Linux&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=aa4faf6eb271%3C%20fe0f92fd5320%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

In the Linux kernel, the following vulnerability has been resolved:media: v4l: async: Fix NULL pointer dereference in adding ancillary linksIn v4l2_async_create_ancillary_links(), ancillary links are created forlens and flash sub-devices. These are sub-device to sub-device links andif the async notifier is related to a V4L2 device, the source sub-deviceof the ancillary link is NULL, leading to a NULL pointer dereference.Check the notifier's sd field is non-NULL inv4l2_async_create_ancillary_links().[Sakari Ailus: Reword the subject and commit messages slightly.]

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/fkie-cad/nvd-json-data-feeds