Linux Kernel Division by Zero Vulnerability in net: hibmcge Component

A division by zero vulnerability has been identified in the Linux kernel's net: hibmcge component. This issue occurs when the network port is down, causing the queue to be released and the ring length to become zero. In this state, a function called hbg_get_queue_used_num() may be invoked, leading to a potential division by zero error. The vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability can cause a division by zero error, which may lead to a system crash or other unintended behavior.

Reproduction

The vulnerability can be reproduced by bringing the network port down, which releases the queue and sets the ring length to zero. In this state, the hbg_get_queue_used_num() function is called, triggering the division by zero error.

Remediation

The vulnerability has been addressed in the Linux kernel. Users can apply the latest patches available in the Linux kernel stable tree to mitigate this issue.