CVE-2026-31603

MEDIUM

staging: sm750fb: fix division by zero in ps_to_hz()

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: staging: sm750fb: fix division by zero in ps_to_hz() ps_to_hz() is called from hw_sm750_crtc_set_mode() without validating that pixclock is non-zero. A zero pixclock passed via FBIOPUT_VSCREENINFO causes a division by zero. Fix by rejecting zero pixclock in lynxfb_ops_check_var(), consistent with other framebuffer drivers.

References (6)

https://git.kernel.org/stable/c/2f640c6043aeab31a2f607d7605271860c3b11df

https://git.kernel.org/stable/c/1412ba36597a82e928f20047f41d6c6582dafe8a

https://git.kernel.org/stable/c/6144895a4335a2491c282931f1f2fa610b86339f

https://git.kernel.org/stable/c/daf6733bd7c4c5015b431739ac29b0e29021096b

https://git.kernel.org/stable/c/75a1621e4f91310673c9acbcbb25c2a7ff821cd3

https://git.kernel.org/stable/c/779412e0e391fd4a0d12e1d1adaa7bf043de62d7

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-369

Status published

Products (19)

Linux/Linux < 4.1

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 1412ba36597a82e928f20047f41d6c6582dafe8a

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 2f640c6043aeab31a2f607d7605271860c3b11df

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 6144895a4335a2491c282931f1f2fa610b86339f

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - daf6733bd7c4c5015b431739ac29b0e29021096b

Linux/Linux 4.1

Linux/Linux 6.12.83 - 6.12.*

Linux/Linux 6.18.24 - 6.18.*

Linux/Linux 6.19.14 - 6.19.*

Linux/Linux 6.6.136 - 6.6.*

... and 9 more

Published Apr 24, 2026

Tracked Since Apr 24, 2026