Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2024-26778
HistoryApr 03, 2024 - 12:00 a.m.

CVE-2024-26778

2024-04-0300:00:00
ubuntu.com
ubuntu.com
7
linux kernel
framebuffer device
pixclock
divide-by-zero
ioctl
driver validation
cve-2024-26778
i740fb fix

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

In the Linux kernel, the following vulnerability has been resolved: fbdev:
savage: Error out if pixclock equals zero The userspace program could pass
any values to the driver through ioctl() interface. If the driver doesn’t
check the value of pixclock, it may cause divide-by-zero error. Although
pixclock is checked in savagefb_decode_var(), but it is not checked
properly in savagefb_probe(). Fix this by checking whether pixclock is zero
in the function savagefb_check_var() before info->var.pixclock is used as
the divisor. This is similar to CVE-2022-3061 in i740fb which was fixed by
commit 15cf0b8.

OSVersionArchitecturePackageVersionFilename
ubuntu20.04noarchlinux< 5.4.0-186.206UNKNOWN
ubuntu22.04noarchlinux< 5.15.0-112.122UNKNOWN
ubuntu23.10noarchlinux< anyUNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1126.136UNKNOWN
ubuntu22.04noarchlinux-aws< 5.15.0-1063.69UNKNOWN
ubuntu23.10noarchlinux-aws< anyUNKNOWN
ubuntu20.04noarchlinux-aws-5.15< 5.15.0-1063.69~20.04.1UNKNOWN
ubuntu18.04noarchlinux-aws-5.4< 5.4.0-1126.136~18.04.1UNKNOWN
ubuntu22.04noarchlinux-aws-6.5< anyUNKNOWN
ubuntu20.04noarchlinux-azure< 5.4.0-1131.138UNKNOWN
Rows per page:
1-10 of 651

References

Related

nvd 3
debiancve 3
cve 3
redhatcve 3
vulnrichment 2
cvelist 3
veracode 1
prion 1
ubuntucve 2
openvas 36
osv 27
ubuntu 15
nessus 48
mageia 2
debian 4
photon 2
slackware 2
avleonov 1
nvd
nvd
CVE-2024-26778
2024-04-03 17:15:53
CVE-2022-3061
2022-09-01 18:15:09
CVE-2024-26777
2024-04-03 17:15:53
debiancve
debiancve
CVE-2024-26778
2024-04-03 17:15:53
CVE-2022-3061
2022-09-01 18:15:09
CVE-2024-26777
2024-04-03 17:15:53
cve
cve
CVE-2024-26778
2024-04-03 17:15:53
CVE-2022-3061
2022-09-01 18:15:09
CVE-2024-26777
2024-04-03 17:15:53
redhatcve
redhatcve
CVE-2024-26778
2024-04-04 01:03:36
CVE-2022-3061
2022-08-30 09:14:55
CVE-2024-26777
2024-04-04 01:03:26
vulnrichment
vulnrichment
CVE-2024-26778 fbdev: savage: Error out if pixclock equals zero
2024-04-03 17:01:08
CVE-2024-26777 fbdev: sis: Error out if pixclock equals zero
2024-04-03 17:01:02
cvelist
cvelist
CVE-2024-26778 fbdev: savage: Error out if pixclock equals zero
2024-04-03 17:01:08
CVE-2022-3061
2022-09-01 00:00:00
CVE-2024-26777 fbdev: sis: Error out if pixclock equals zero
2024-04-03 17:01:02
veracode
veracode
Denial Of Service (DoS)
2023-01-17 19:04:07
prion
prion
Design/Logic Flaw
2022-09-01 18:15:00
ubuntucve
ubuntucve
CVE-2022-3061
2022-09-01 00:00:00
CVE-2024-26777
2024-04-03 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5790-1)
2023-01-09 00:00:00
Ubuntu: Security Advisory (USN-5976-1)
2023-03-28 00:00:00
Ubuntu: Security Advisory (USN-5791-2)
2023-01-10 00:00:00
osv
osv
linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-dell300x, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities
2023-01-06 20:27:27
linux-oem-5.14, linux-oem-5.17 vulnerabilities
2023-03-27 22:26:57
linux-bluefield vulnerabilities
2023-01-19 20:07:11
ubuntu
ubuntu
Linux kernel vulnerabilities
2023-01-06 00:00:00
Linux kernel (OEM) vulnerabilities
2023-03-27 00:00:00
Linux kernel (BlueField) vulnerabilities
2023-01-19 00:00:00
nessus
nessus
Ubuntu 16.04 ESM / 18.04 LTS : Linux kernel vulnerabilities (USN-5790-1)
2023-01-07 00:00:00
Amazon Linux 2 : kernel (ALASKERNEL-5.10-2022-021)
2022-10-25 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-5976-1)
2023-03-27 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2022-10-23 23:35:49
Updated kernel-linus packages fix security vulnerabilities
2022-10-23 23:35:49
debian
debian
[SECURITY] [DSA 5257-1] linux security update
2022-10-18 21:06:43
[SECURITY] [DLA 3173-1] linux-5.10 security update
2022-11-01 20:57:30
[SECURITY] [DSA 5658-1] linux security update
2024-04-13 06:38:27
photon
photon
Important Photon OS Security Update - PHSA-2023-3.0-0538
2023-02-26 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0275
2022-11-04 00:00:00
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2022-11-29 21:04:28
[slackware-security] Slackware 15.0 kernel
2024-06-05 19:11:11
avleonov
avleonov
Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs
2022-12-30 18:03:13

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON
Related for UB:CVE-2024-26778
nvd3debiancve3cve3redhatcve3vulnrichment2cvelist3veracode1prion1ubuntucve2openvas36osv27ubuntu15nessus48mageia2debian4photon2slackware2avleonov1