5.5
CVE-2024-50232
- EPSS 0.25%
- Veröffentlicht 09.11.2024 11:15:09
- Zuletzt bearbeitet 03.11.2025 23:17:04
- CVE-Watchlists
- Unerledigt
iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()
In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr() In the ad7124_write_raw() function, parameter val can potentially be zero. This may lead to a division by zero when DIV_ROUND_CLOSEST() is called within ad7124_set_channel_odr(). The ad7124_write_raw() function is invoked through the sequence: iio_write_channel_raw() -> iio_write_channel_attribute() -> iio_channel_write(), with no checks in place to ensure val is non-zero.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.13 < 5.15.171
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.116
Linux ≫ Linux Kernel Version >= 6.2 < 6.6.60
Linux ≫ Linux Kernel Version >= 6.7 < 6.11.7
Linux ≫ Linux Kernel Version6.12 Updaterc1
Linux ≫ Linux Kernel Version6.12 Updaterc2
Linux ≫ Linux Kernel Version6.12 Updaterc3
Linux ≫ Linux Kernel Version6.12 Updaterc4
Linux ≫ Linux Kernel Version6.12 Updaterc5
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.25% | 0.158 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-369 Divide By Zero
The product divides a value by zero.
https://git.kernel.org/stable/c/0ac0beb4235a9a474f681280a3bd4e2a5bb66569
https://git.kernel.org/stable/c/3dc0eda2cd5c653b162852ae5f0631bfe4ca5e95
https://git.kernel.org/stable/c/4f588fffc307a4bc2761aee6ff275bb4b433e451
https://git.kernel.org/stable/c/efa353ae1b0541981bc96dbf2e586387d0392baa
https://git.kernel.org/stable/c/f51343f346e6abde094548a7fb34472b0d4cae91
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html