Linux Kernel Divide-By-Zero Vulnerability in ArkFB Video Driver

A divide-by-zero vulnerability has been identified in the Linux kernel's ArkFB video driver, specifically within the framebuffer device (fbdev) subsystem. The issue arises in the 'ark_set_pixclock' function, where user-controlled arguments passed through the 'ioctl' system call can lead to a division by zero. This vulnerability is triggered when 'hdiv' is set to 1, 'pixclock' to 1, and 'hmul' to 2, resulting in a calculated value of zero. The subsequent operation attempts to divide by this zero value, causing a division error. The vulnerability has been logged as a divide error, indicating the occurrence of this arithmetic fault.

Impact

Exploitation of this vulnerability causes a division-by-zero error, which can lead to a crash or undefined behavior in the system.

Reproduction

To reproduce this vulnerability, send an 'ioctl' request to the ArkFB video driver with the 'hdiv' parameter set to 1, 'pixclock' set to 1, and 'hmul' set to 2. This combination will trigger the divide-by-zero condition in the 'ark_set_pixclock' function.

Remediation

The vulnerability has been addressed in the official Linux kernel repository. Users should upgrade to the latest version where this issue has been fixed.