CVE-2024-50287 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-tpg: prevent the risk of a division by zero As reported by Coverity, the logic at tpg_precalculate_line() blindly rescales the buffer even when scaled_witdh is equal to zero. If this ever happens, this will cause a division by zero. Instead, add a WARN_ON_ONCE() to trigger such cases and return without doing any precalculation.

Reserved 2024-10-21 | Published 2024-11-19 | Updated 2025-05-04 | Assigner Linux

Product status

Default status

unaffected

63881df94d3ecbb0deafa0b77da62ff2f32961c4 before e3c36d0bde309f690ed1f9cd5f7e63b3a513f94a

affected

63881df94d3ecbb0deafa0b77da62ff2f32961c4 before 0bfc6e38ee2250f0503d96f1a1de441c31d88715

affected

63881df94d3ecbb0deafa0b77da62ff2f32961c4 before 054931ca3cfcb8e8fa036e887d6f379942b02565

affected

63881df94d3ecbb0deafa0b77da62ff2f32961c4 before a749c15dccc58d9cbad9cd23bd8ab4b5fa96cf47

affected

63881df94d3ecbb0deafa0b77da62ff2f32961c4 before c63c30c9d9f2c8de34b16cd2b8400240533b914e

affected

63881df94d3ecbb0deafa0b77da62ff2f32961c4 before 2d0f01aa602fd15a805771bdf3f4d9a9b4df7f47

affected

63881df94d3ecbb0deafa0b77da62ff2f32961c4 before 0cdb42ba0b28f548c1a4e86bb8489dba0d78fc21

affected

63881df94d3ecbb0deafa0b77da62ff2f32961c4 before e6a3ea83fbe15d4818d01804e904cbb0e64e543b

affected

Default status

affected

3.18

affected

Any version before 3.18

unaffected

4.19.324

unaffected

5.4.286

unaffected

5.10.230

unaffected

5.15.172

unaffected

6.1.117

unaffected

6.6.61

unaffected

6.11.8

unaffected

6.12

unaffected

References

git.kernel.org/...c/e3c36d0bde309f690ed1f9cd5f7e63b3a513f94a

git.kernel.org/...c/0bfc6e38ee2250f0503d96f1a1de441c31d88715

git.kernel.org/...c/054931ca3cfcb8e8fa036e887d6f379942b02565

git.kernel.org/...c/a749c15dccc58d9cbad9cd23bd8ab4b5fa96cf47

git.kernel.org/...c/c63c30c9d9f2c8de34b16cd2b8400240533b914e

git.kernel.org/...c/2d0f01aa602fd15a805771bdf3f4d9a9b4df7f47

git.kernel.org/...c/0cdb42ba0b28f548c1a4e86bb8489dba0d78fc21

git.kernel.org/...c/e6a3ea83fbe15d4818d01804e904cbb0e64e543b

cve.org (CVE-2024-50287)

nvd.nist.gov (CVE-2024-50287)

Download JSON