CVE-2025-37770

high

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Prevent division by zero The user can set any speed value. If speed is greater than UINT_MAX/8, division by zero is possible. Found by Linux Verification Center (linuxtesting.org) with SVACE.

References

https://git.kernel.org/stable/c/e109528bbf460e50074c156253d9080d223ee37f

https://git.kernel.org/stable/c/bd4d90adbca1862d03e581e10e74ab73ec75e61b

https://git.kernel.org/stable/c/836a189fb422e7efb81c51d5160e47ec7bc11500

https://git.kernel.org/stable/c/587de3ca7875c06fe3c3aa4073a85c4eff46591f

https://git.kernel.org/stable/c/4b8c3c0d17c07f301011e2908fecd2ebdcfe3d1c

https://git.kernel.org/stable/c/0c02fcbe4a1393a3c02da6ae35e72493cfdb2155

https://git.kernel.org/stable/c/05de66de280ea1bd0459c994bfd2dd332cfbc2a9

Details

Source: Mitre, NVD

Published: 2025-05-01

Updated: 2025-05-02

Risk Information

CVSS v2

Base Score: 6.9

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00024