CVE-2026-31605

medium

Description

In the Linux kernel, the following vulnerability has been resolved: fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO Much like commit 19f953e74356 ("fbdev: fb_pm2fb: Avoid potential divide by zero error"), we also need to prevent that same crash from happening in the udlfb driver as it uses pixclock directly when dividing, which will crash.

References

https://git.kernel.org/stable/c/cce24f70090e0decb597b88bc52e8ef8efed6105

https://git.kernel.org/stable/c/cccbf9b7fdab48ce4feb69c24f7f928aa8e4e8b8

https://git.kernel.org/stable/c/afaaaa38579f1252bb42b145f6e88a955c4f73f3

https://git.kernel.org/stable/c/a31e4518bec70333a0a98f2946a12b53b45fe5b9

https://git.kernel.org/stable/c/6de048d78f3029744778b7a2891745f3ca7c209a

https://git.kernel.org/stable/c/03797cdee38ef19c87785622d423aabaafb71c5f

Details

Source: Mitre, NVD

Published: 2026-04-24

Updated: 2026-04-29

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018