Divide Error Vulnerability in Linux Kernel RIVA Framebuffer Driver
CVE-2026-23266

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 March 2026

What is CVE-2026-23266?

A divide error vulnerability exists in the RIVA framebuffer driver within the Linux kernel. This flaw occurs when a userspace program invokes the FBIOPUT_VSCREENINFO ioctl on the framebuffer device, leading to a potential crash by dividing by zero. An attacker can exploit this by presenting a malicious device that sets a bogus PRAMDAC PLL configuration, resulting in state->mclk_khz being zero. Consequently, the kernel experiences a divide error during FIFO arbitration calculation, risking system stability. Mitigation has been implemented by validating state->mclk_khz prior to division, enhancing the security of the driver.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 52916878db2b8e3769743a94484729f0844352df

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 526460a96c5443e2fc0fd231edd1f9c49d2de26b

References

https://git.kernel.org/stable/c/ec5a58f4fd581875593ea92a6...
https://git.kernel.org/stable/c/52916878db2b8e3769743a944...
https://git.kernel.org/stable/c/526460a96c5443e2fc0fd231e...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.