{
  "public_date" : "2026-04-24T00:00:00Z",
  "bugzilla" : {
    "description" : "kernel: fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO",
    "id" : "2461563",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2461563"
  },
  "cwe" : "CWE-369",
  "details" : [ "In the Linux kernel, the following vulnerability has been resolved:\nfbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO\nMuch like commit 19f953e74356 (\"fbdev: fb_pm2fb: Avoid potential divide\nby zero error\"), we also need to prevent that same crash from happening\nin the udlfb driver as it uses pixclock directly when dividing, which\nwill crash.", "A flaw was found in the Linux kernel's fbdev subsystem, specifically affecting the tdfxfb and udlfb drivers. This vulnerability allows a local attacker to trigger a divide-by-zero error when performing the FBIOPUT_VSCREENINFO operation. This can lead to a system crash, resulting in a Denial of Service (DoS) for the affected system." ],
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 10",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:10"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 7",
    "fix_state" : "Not affected",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:7"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Not affected",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "kernel",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Not affected",
    "package_name" : "kernel-rt",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2026-31618\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-31618\nhttps://lore.kernel.org/linux-cve-announce/2026042424-CVE-2026-31618-baf8@gregkh/T" ],
  "name" : "CVE-2026-31618",
  "csaw" : false
}