CVE-2022-3061

EPSS 0.02%
Published 01.09.2022 18:15:09
Last modified 21.11.2024 07:18:44
Source secalert@redhat.com
Teams watchlist Login
Open Login

Found Linux Kernel flaw in the i740 driver. The Userspace program could pass any values to the driver through ioctl() interface. The driver doesn't check the value of 'pixclock', so it may cause a divide by zero error.

Affected products Warnungen 0 Metrics 2 CWE 1 References 6

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version5.18 Updaterc5

Debian ≫ Debian Linux Version10.0

Debian ≫ Debian Linux Version11.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.02%	0.047

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-369 Divide By Zero

The product divides a value by zero.

https://lists.debian.org/debian-lts-announce/2022/11/msg00001.html

Third Party Advisory

Mailing List

https://www.debian.org/security/2022/dsa-5257

Third Party Advisory

https://git.kernel.org/pub/scm/linux/kernel/git/deller/linux-fbdev.git/commit/?id=15cf0b82271b1823fb02ab8c377badba614d95d5

Patch

Vendor Advisory

Mailing List

https://nvd.nist.gov/vuln/detail/CVE-2022-3061

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-3061

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-3061

EUVD