CVE-2024-50232

Summary

In the Linux kernel, the following vulnerability has been resolved:

iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()

In the ad7124_write_raw() function, parameter val can potentially be zero. This may lead to a division by zero when DIV_ROUND_CLOSEST() is called within ad7124_set_channel_odr(). The ad7124_write_raw() function is invoked through the sequence: iio_write_channel_raw() -> iio_write_channel_attribute() -> iio_channel_write(), with no checks in place to ensure val is non-zero.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux7b8d045e497a04dd88546da51f34fa3b102778d2 < 4f588fffc307a4bc2761aee6ff275bb4b433e451affected
LinuxLinux7b8d045e497a04dd88546da51f34fa3b102778d2 < f51343f346e6abde094548a7fb34472b0d4cae91affected
LinuxLinux7b8d045e497a04dd88546da51f34fa3b102778d2 < 3dc0eda2cd5c653b162852ae5f0631bfe4ca5e95affected
LinuxLinux7b8d045e497a04dd88546da51f34fa3b102778d2 < 0ac0beb4235a9a474f681280a3bd4e2a5bb66569affected
LinuxLinux7b8d045e497a04dd88546da51f34fa3b102778d2 < efa353ae1b0541981bc96dbf2e586387d0392baaaffected
LinuxLinux5.13affected
LinuxLinux0 < 5.13unaffected
LinuxLinux5.15.171 <= 5.15.*unaffected
LinuxLinux6.1.116 <= 6.1.*unaffected
LinuxLinux6.6.60 <= 6.6.*unaffected
LinuxLinux6.11.7 <= 6.11.*unaffected
LinuxLinux6.12 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References