CVE-2024-26778

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-26778
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26778.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-26778
Downstream
Related
Published
2024-04-03T17:01:08.782Z
Modified
2026-03-20T12:35:12.939005Z
Summary
fbdev: savage: Error out if pixclock equals zero
Details

In the Linux kernel, the following vulnerability has been resolved:

fbdev: savage: Error out if pixclock equals zero

The userspace program could pass any values to the driver through ioctl() interface. If the driver doesn't check the value of pixclock, it may cause divide-by-zero error.

Although pixclock is checked in savagefbdecodevar(), but it is not checked properly in savagefbprobe(). Fix this by checking whether pixclock is zero in the function savagefbcheck_var() before info->var.pixclock is used as the divisor.

This is similar to CVE-2022-3061 in i740fb which was fixed by commit 15cf0b8.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26778.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Fixed
224453de8505aede1890f007be973925a3edf6a1
Fixed
84dce0f6a4cc5b7bfd7242ef9290db8ac1dd77ff
Fixed
512ee6d6041e007ef5bf200c6e388e172a2c5b24
Fixed
8c54acf33e5adaad6374bf3ec1e3aff0591cc8e1
Fixed
070398d32c5f3ab0e890374904ad94551c76aec4
Fixed
bc3c2e58d73b28b9a8789fca84778ee165a72d13
Fixed
a9ca4e80d23474f90841251f4ac0d941fa337a01
Fixed
04e5eac8f3ab2ff52fa191c187a46d4fdbc1e288

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-26778.json"