Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-26778HistoryApr 03, 2024 - 5:15 p.m.
CVE-2024-26778
2024-04-0317:15:53
Debian Security Bug Tracker
security-tracker.debian.org
5
linux kernel
fbdev
savage
pixclock
vulnerability
fix
ioctl
interface
divide-by-zero error
savagefb_decode_var
savagefb_probe
savagefb_check_var
cve-2024-26778
cve-2022-3061
i740fb
commit 15cf0b
unix
In the Linux kernel, the following vulnerability has been resolved: fbdev: savage: Error out if pixclock equals zero The userspace program could pass any values to the driver through ioctl() interface. If the driver doesn’t check the value of pixclock, it may cause divide-by-zero error. Although pixclock is checked in savagefb_decode_var(), but it is not checked properly in savagefb_probe(). Fix this by checking whether pixclock is zero in the function savagefb_check_var() before info->var.pixclock is used as the divisor. This is similar to CVE-2022-3061 in i740fb which was fixed by commit 15cf0b8.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | < 6.1.82-1 | linux_6.1.82-1_all.deb |
| Debian | 11 | all | linux | <= 5.10.209-2 | linux_5.10.209-2_all.deb |
| Debian | 10 | all | linux | <= 4.19.249-2 | linux_4.19.249-2_all.deb |
| Debian | 999 | all | linux | < 6.7.7-1 | linux_6.7.7-1_all.deb |
| Debian | 13 | all | linux | <= 6.6.15-2 | linux_6.6.15-2_all.deb |
Related
redhatcve
redhatcve
ubuntucve
ubuntucve
cve
cve
veracode
veracode
Denial Of Service (DoS)
2023-01-17 19:04:07
debiancve
debiancve
CVE-2022-3061
2022-09-01 18:15:00
CVE-2024-26777
2024-04-03 17:15:53
prion
prion
Design/Logic Flaw
2022-09-01 18:15:00
nessus
nessus
Ubuntu 16.04 ESM / 18.04 LTS : Linux kernel vulnerabilities (USN-5790-1)
2023-01-07 00:00:00
Amazon Linux 2 : kernel (ALASKERNEL-5.10-2022-021)
2022-10-25 00:00:00
Amazon Linux 2 : kernel (ALASKERNEL-5.15-2022-009)
2022-10-25 00:00:00
osv
osv
linux-oem-5.14, linux-oem-5.17 vulnerabilities
2023-03-27 22:26:57
linux-bluefield vulnerabilities
2023-01-19 20:07:11
ubuntu
ubuntu
Linux kernel vulnerabilities
2023-01-06 00:00:00
Linux kernel (OEM) vulnerabilities
2023-03-27 00:00:00
Linux kernel (BlueField) vulnerabilities
2023-01-19 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5790-1)
2023-01-09 00:00:00
Ubuntu: Security Advisory (USN-5976-1)
2023-03-28 00:00:00
Ubuntu: Security Advisory (USN-5791-2)
2023-01-10 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2022-10-23 23:35:49
Updated kernel-linus packages fix security vulnerabilities
2022-10-23 23:35:49
debian
debian
[SECURITY] [DSA 5257-1] linux security update
2022-10-18 21:06:43
[SECURITY] [DLA 3173-1] linux-5.10 security update
2022-11-01 20:57:30
[SECURITY] [DSA 5658-1] linux security update
2024-04-13 06:37:58
photon
photon
Important Photon OS Security Update - PHSA-2023-3.0-0538
2023-02-26 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0275
2022-11-04 00:00:00
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2022-11-29 21:04:28
avleonov
avleonov
6.7 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
12.1%
Related for DEBIANCVE:CVE-2024-26778