CVE-2022-3061

EPSS 0.02%
Veröffentlicht 01.09.2022 18:15:09
Zuletzt bearbeitet 21.11.2024 07:18:44
Quelle secalert@redhat.com
Teams Watchlist Login
Unerledigt Login

Found Linux Kernel flaw in the i740 driver. The Userspace program could pass any values to the driver through ioctl() interface. The driver doesn't check the value of 'pixclock', so it may cause a divide by zero error.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version5.18 Updaterc5

Debian ≫ Debian Linux Version10.0

Debian ≫ Debian Linux Version11.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.047

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-369 Divide By Zero

The product divides a value by zero.

https://lists.debian.org/debian-lts-announce/2022/11/msg00001.html

Third Party Advisory

Mailing List

https://www.debian.org/security/2022/dsa-5257

Third Party Advisory

https://git.kernel.org/pub/scm/linux/kernel/git/deller/linux-fbdev.git/commit/?id=15cf0b82271b1823fb02ab8c377badba614d95d5

Patch

Vendor Advisory

Mailing List

https://nvd.nist.gov/vuln/detail/CVE-2022-3061

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-3061

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-3061

EUVD