Bug 1202913 - (CVE-2022-3061) VUL-0: CVE-2022-3061: kernel-source-azure,kernel-source-rt,kernel-source: fbdev: i740fb: divide-by-zero in drivers/video/fbdev/i740fb.c could lead to DoS
(CVE-2022-3061)
VUL-0: CVE-2022-3061: kernel-source-azure,kernel-source-rt,kernel-source: fbd...
Status: RESOLVED INVALID
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Normal
: ---
Assigned To: Security Team bot
Security Team bot
https://smash.suse.de/issue/341123/
CVSSv3.1:SUSE:CVE-2022-3061:4.4:(AV:L...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2022-08-30 10:37 UTC by Hu
Modified: 2022-09-27 11:31 UTC (History)
3 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Hu 2022-08-30 10:37:24 UTC
rh#2122526

Found Linux Kernel flaw in the i740 driver.
The Userspace program could pass any values to the driver through ioctl() interface.
The driver doesn't check the value of 'pixclock', so it may cause a divide by zero error.

Reference: 
https://git.kernel.org/pub/scm/linux/kernel/git/deller/linux-fbdev.git/commit/?id=15cf0b82271b1823fb02ab8c377badba614d95d5

References:
https://bugzilla.redhat.com/show_bug.cgi?id=2122526
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-3061
Comment 1 Hu 2022-08-30 10:37:30 UTC
Fix: https://github.com/torvalds/linux/commit/15cf0b82271b1823fb02ab8c377badba614d95d5

Affected:
- cve/linux-3.0
- cve/linux-4.4
- cve/linux-4.12
- cve/linux-5.3
- SLE15-SP4
- SLE15-SP3
- SLE12-SP5

Not affected (already fixed):
- stable
Comment 2 Takashi Iwai 2022-08-30 11:22:06 UTC
CONFIG_FB_I740 has been disabled on all releases, hence we are unaffected.

Reassigned back to security team.
Comment 3 Thomas Leroy 2022-09-27 11:31:59 UTC
Thanks Takashi, closing