Linux Kernel Division-by-Zero Vulnerability in Energy Efficiency Calculations

Vulnerability

A division-by-zero vulnerability has been identified in the Linux kernel's energy efficiency calculation process, specifically within the 'em_compute_costs()' function. This issue arises when the device is not of CPU type, leading to uninitialized performance data. The vulnerability occurs because the cost algorithm, used for Energy Aware Scheduling (EAS) calculations, attempts to compute costs without proper initialization, causing a potential crash or undefined behavior.

Impact

Exploitation of this vulnerability can lead to a system crash or unpredictable behavior due to the division-by-zero error.

Added: Jul 10, 2025, 9:07 AM

Updated: Jul 10, 2025, 9:07 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Division-by-Zero Vulnerability in Energy Efficiency Calculations

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating