CVE-2022-3061 — Divide By Zero in Linux
Severity
5.5MEDIUMNVD
OSV8.8OSV7.8OSV5.9OSV4.4
EPSS
0.0%
top 93.62%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedSep 1
Latest updateApr 3
Description
Found Linux Kernel flaw in the i740 driver. The Userspace program could pass any values to the driver through ioctl() interface. The driver doesn't check the value of 'pixclock', so it may cause a divide by zero error.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6
Affected Packages5 packages
▶CVEListV5linux/linux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 — 224453de8505aede1890f007be973925a3edf6a1+8
Also affects: Debian Linux 10.0, 11.0
Patches
🔴Vulnerability Details
19GHSA▶
GHSA-4m6c-v88j-qqxh: In the Linux kernel, the following vulnerability has been resolved:
fbdev: savage: Error out if pixclock equals zero
The userspace program could pas↗2024-04-03
OSV▶
CVE-2024-26778: In the Linux kernel, the following vulnerability has been resolved: fbdev: savage: Error out if pixclock equals zero The userspace program could pass↗2024-04-03
OSV▶
CVE-2024-26777: In the Linux kernel, the following vulnerability has been resolved: fbdev: sis: Error out if pixclock equals zero The userspace program could pass any↗2024-04-03
GHSA▶
GHSA-7mjh-m8r7-cjw8: In the Linux kernel, the following vulnerability has been resolved:
fbdev: sis: Error out if pixclock equals zero
The userspace program could pass a↗2024-04-03