SB20250620170 - Division by zero in Linux kernel video fbdev driver
Published: June 20, 2025 Updated: June 21, 2025
Security Bulletin ID
SB20250620170
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Division by zero (CVE-ID: CVE-2022-50102)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a division by zero error within the arkfb_set_par() function in drivers/video/fbdev/arkfb.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/0288fa799e273b08839037499d704dc7bdc13e9a
- https://git.kernel.org/stable/c/15661642511b2b192077684a89f42a8d95d54286
- https://git.kernel.org/stable/c/236c1502520b7b08955467ec2e50b3232e34f1f9
- https://git.kernel.org/stable/c/2f1c4523f7a3aaabe7e53d3ebd378292947e95c8
- https://git.kernel.org/stable/c/76b3f0a0b56e53a960a14624a0f48b3d94b5e7e7
- https://git.kernel.org/stable/c/9ebc5031958c1f3a2795e4533b4091d77c738d14
- https://git.kernel.org/stable/c/a249e1b89ca25e1c34bdf96154e3f6224a91a9af
- https://git.kernel.org/stable/c/b9a66f23612b84617e04412169e155a4b92f632d
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.256