CVE-2026-31605
5.5 MEDIUMIn the Linux kernel, the following vulnerability has been resolved: fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO Much like...
Published: 2026-04-24 · Last updated: 2026-06-01
Severity and scoring
- CVSS
- 5.5 MEDIUM
- Vector
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
- CWE
- CWE-369
Affected products
| Vendor | Product |
|---|---|
| linux | linux_kernel |
Description
In the Linux kernel, the following vulnerability has been resolved: fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO Much like commit 19f953e74356 ("fbdev: fb_pm2fb: Avoid potential divide by zero error"), we also need to prevent that same crash from happening in the udlfb driver as it uses pixclock directly when dividing, which will crash.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2026-31605
- [Patch]https://git.kernel.org/stable/c/03797cdee38ef19c87785622d423aabaafb71c5f
- [Patch]https://git.kernel.org/stable/c/6de048d78f3029744778b7a2891745f3ca7c209a
- [Other]https://git.kernel.org/stable/c/828ce54b27de93bd9c67991bca5a2c76c76742de
- [Other]https://git.kernel.org/stable/c/9981de9fb5ae0d3d6bc5ff5ca63350c2a3cdc564
- [Patch]https://git.kernel.org/stable/c/a31e4518bec70333a0a98f2946a12b53b45fe5b9
- [Patch]https://git.kernel.org/stable/c/afaaaa38579f1252bb42b145f6e88a955c4f73f3
- [Patch]https://git.kernel.org/stable/c/cccbf9b7fdab48ce4feb69c24f7f928aa8e4e8b8
- [Patch]https://git.kernel.org/stable/c/cce24f70090e0decb597b88bc52e8ef8efed6105
- [Other]https://git.kernel.org/stable/c/fd50ab7dd4ee5bbb4aebffa76ae18484b03a8ea5
Related CVEs
Same vendor
- CVE-2026-46273 — In the Linux kernel, the following vulnerability has been resolved: ibmveth: Disable GSO for packets with small MSS Some physical adapt... (8.6 HIGH)
- CVE-2026-46272 — In the Linux kernel, the following vulnerability has been resolved: coresight: tmc-etr: Fix race condition between sysfs and perf mode ... (4.7 MEDIUM)
- CVE-2026-46271 — In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: do WoW offloads only on primary link In case of multi... (7.8 HIGH)
- CVE-2026-46270 — In the Linux kernel, the following vulnerability has been resolved: power: supply: rt9455: Fix use-after-free in power_supply_changed() ... (8.4 HIGH)
- CVE-2026-46269 — In the Linux kernel, the following vulnerability has been resolved: pinctrl: canaan: k230: Fix NULL pointer dereference when parsing dev... (5.5 MEDIUM)
Same CWE
- CVE-2025-55642 — GPAC MP4Box v2.4 was discovered to contain a floating point exception in the avidmx_process function (isomedia/isom_write.c) (6.5 MEDIUM)
- CVE-2025-70100 — A divide-by-zero vulnerability in the ext4_block_set_lb_size function in src/ext4_blockdev.c of the lwext4 1.0.0 library allows attackers... (5.5 MEDIUM)
- CVE-2026-37232 — An issue was discovered in OpenAirInterface5G 2.4.0 (nr-softmodem) in the E2SM-KPM RAN Function's PRB utilization metric calculation (8.6 HIGH)
- CVE-2026-10201 — A vulnerability was determined in Assimp up to 6.0.4 (3.3 LOW)
- CVE-2026-46184 — In the Linux kernel, the following vulnerability has been resolved: sound: ua101: fix division by zero at probe Add a missing sanity ch... (5.5 MEDIUM)