VDB
CVE-2026-31618
CVE-2026-31618
PUBLISHED
CVSS 8.699999809265137 HIGH
In the Linux kernel, the following vulnerability has been resolved: fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO Much like commit 19f953e74356 ("fbdev: fb_pm2fb: Avoid potential divide by zero error"), we also need to prevent that same crash from happening in the udlfb driver as it uses pixclock directly when dividing, which will crash.
EPSS 0.01% · 2.5th percentile
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.01%
2.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| linux | linux_kernel | 0, 0, 0 |
| Linux | Linux | *, 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, 6.18.24 |
Exploit Intelligence
- https://git.kernel.org/stable/c/53cb4e79a07124d2ebe502983c29800104080b47 (circl)
- https://git.kernel.org/stable/c/fc386daa6846551a88d338ba9864fc2812cd9030 (circl)
- https://git.kernel.org/stable/c/6567d3e1aaadfebf44ce7dc9ea2630323cd4c736 (circl)
- https://git.kernel.org/stable/c/63dfb0b4741f46d65b667c4275132b3d1966acc8 (circl)
- 4694.0.0.yml (github-poc)
- 4694.0.0.yml (github-poc)
- 4694.0.0.yml (github-poc)
- 4694.0.0.yml (github-poc)
- 4694.0.0.yml (github-poc)
Timeline
- Apr 24, 2026 CVE Published
- Apr 24, 2026 Security Advisory
- Apr 27, 2026 Security Advisory
- May 18, 2026 EPSS Score
- May 19, 2026 EPSS Score
- May 20, 2026 EPSS Score
- May 21, 2026 EPSS Score
- May 22, 2026 EPSS Score
- May 23, 2026 EPSS Score
- May 24, 2026 EPSS Score
- May 25, 2026 EPSS Score
- May 26, 2026 EPSS Score
References
- https://git.kernel.org/stable/c/53cb4e79a07124d2ebe502983c29800104080b47 url
- https://git.kernel.org/stable/c/fc386daa6846551a88d338ba9864fc2812cd9030 url
- https://git.kernel.org/stable/c/6567d3e1aaadfebf44ce7dc9ea2630323cd4c736 url
- https://git.kernel.org/stable/c/63dfb0b4741f46d65b667c4275132b3d1966acc8 url
- https://nvd.nist.gov/vuln/detail/CVE-2026-31618 advisory
- https://lists.debian.org/debian-security-announce/2026/msg00154.html advisory
- https://lists.debian.org/debian-security-announce/2026/msg00148.html advisory