CVE-2024-39475

CVSS v3.1 5.5 (Medium)

EPSS 0.04 % (5^th)

Affected Products 1

Advisories 24

NVD Status Analyzed

In the Linux kernel, the following vulnerability has been resolved:

fbdev: savage: Handle err return when savagefb_check_var failed

The commit 04e5eac8f3ab("fbdev: savage: Error out if pixclock equals zero")
checks the value of pixclock to avoid divide-by-zero error. However
the function savagefb_probe doesn't handle the error return of
savagefb_check_var. When pixclock is 0, it will cause divide-by-zero error.

Weaknesses

CWE-369: Divide By Zero

CVE Status: PUBLISHED
NVD Status: Analyzed
CNA: kernel.org
Published Date: 2024-07-05 07:15:10
(2 months ago)
Updated Date: 2024-07-08 17:11:44
(2 months ago)

Affected Products

Linux

Linux Kernel

Configuration #1

	CPE23	From	Up To
Linux Kernel from 4.19 version and prior 4.19.316 version	cpe:2.3:o:linux:linux_kernel	>= 4.19	< 4.19.316
Linux Kernel from 5.4 version and prior 5.4.278 version	cpe:2.3:o:linux:linux_kernel	>= 5.4	< 5.4.278
Linux Kernel from 5.10 version and prior 5.10.219 version	cpe:2.3:o:linux:linux_kernel	>= 5.10	< 5.10.219
Linux Kernel from 5.15 version and prior 5.15.161 version	cpe:2.3:o:linux:linux_kernel	>= 5.15	< 5.15.161
Linux Kernel from 6.1 version and prior 6.1.94 version	cpe:2.3:o:linux:linux_kernel	>= 6.1	< 6.1.94
Linux Kernel from 6.6 version and prior 6.6.34 version	cpe:2.3:o:linux:linux_kernel	>= 6.6	< 6.6.34
Linux Kernel from 6.9 version and prior 6.9.5 version	cpe:2.3:o:linux:linux_kernel	>= 6.9	< 6.9.5