CVE-2025-37771

medium

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Prevent division by zero The user can set any speed value. If speed is greater than UINT_MAX/8, division by zero is possible. Found by Linux Verification Center (linuxtesting.org) with SVACE.

References

https://git.kernel.org/stable/c/baa54adb5e0599299b8f088efb5544d876a3eb62

https://git.kernel.org/stable/c/b7c41df4913789ebfe73cc1e17c6401d4c5eab69

https://git.kernel.org/stable/c/7d641c2b83275d3b0424127b2e0d2d0f7dd82aef

https://git.kernel.org/stable/c/6413fed016208171592c88b5df002af8a1387e24

https://git.kernel.org/stable/c/5096174074114f83c700a27869c54362cbb10f3e

https://git.kernel.org/stable/c/402964994e8ece29702383b234fabcf04791ff95

Details

Source: Mitre, NVD

Published: 2025-05-01

Updated: 2025-05-02

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00024