5.5

CVE-2022-50102

EPSS 0.05%
Veröffentlicht 18.06.2025 11:02:38
Zuletzt bearbeitet 19.11.2025 13:43:16
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

video: fbdev: arkfb: Fix a divide-by-zero bug in ark_set_pixclock()

In the Linux kernel, the following vulnerability has been resolved:

video: fbdev: arkfb: Fix a divide-by-zero bug in ark_set_pixclock()

Since the user can control the arguments of the ioctl() from the user
space, under special arguments that may result in a divide-by-zero bug
in:
  drivers/video/fbdev/arkfb.c:784: ark_set_pixclock(info, (hdiv * info->var.pixclock) / hmul);
with hdiv=1, pixclock=1 and hmul=2 you end up with (1*1)/2 = (int) 0.
and then in:
  drivers/video/fbdev/arkfb.c:504: rv = dac_set_freq(par->dac, 0, 1000000000 / pixclock);
we'll get a division-by-zero.

The following log can reveal it:

divide error: 0000 [#1] PREEMPT SMP KASAN PTI
RIP: 0010:ark_set_pixclock drivers/video/fbdev/arkfb.c:504 [inline]
RIP: 0010:arkfb_set_par+0x10fc/0x24c0 drivers/video/fbdev/arkfb.c:784
Call Trace:
 fb_set_var+0x604/0xeb0 drivers/video/fbdev/core/fbmem.c:1034
 do_fb_ioctl+0x234/0x670 drivers/video/fbdev/core/fbmem.c:1110
 fb_ioctl+0xdd/0x130 drivers/video/fbdev/core/fbmem.c:1189

Fix this by checking the argument of ark_set_pixclock() first.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 11

NVD 7 VulnDex Vulnerability Enrichment 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 2.6.22 < 4.14.291

Linux ≫ Linux Kernel Version >= 4.15 < 4.19.256

Linux ≫ Linux Kernel Version >= 4.20 < 5.4.211

Linux ≫ Linux Kernel Version >= 5.5 < 5.10.137

Linux ≫ Linux Kernel Version >= 5.11 < 5.15.61

Linux ≫ Linux Kernel Version >= 5.16 < 5.18.18

Linux ≫ Linux Kernel Version >= 5.19 < 5.19.2

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.156

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-369 Divide By Zero

The product divides a value by zero.

https://git.kernel.org/stable/c/76b3f0a0b56e53a960a14624a0f48b3d94b5e7e7

Patch

https://git.kernel.org/stable/c/b9a66f23612b84617e04412169e155a4b92f632d

Patch

https://git.kernel.org/stable/c/a249e1b89ca25e1c34bdf96154e3f6224a91a9af

Patch

https://git.kernel.org/stable/c/0288fa799e273b08839037499d704dc7bdc13e9a

Patch

https://git.kernel.org/stable/c/236c1502520b7b08955467ec2e50b3232e34f1f9

Patch

https://git.kernel.org/stable/c/9ebc5031958c1f3a2795e4533b4091d77c738d14

Patch

https://git.kernel.org/stable/c/15661642511b2b192077684a89f42a8d95d54286

Patch

https://git.kernel.org/stable/c/2f1c4523f7a3aaabe7e53d3ebd378292947e95c8

Patch

https://nvd.nist.gov/vuln/detail/CVE-2022-50102

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-50102

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-50102

EUVD