CVE-2025-37850

MEDIUM EPSS 13.9%
Published May 9, 20251y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 9, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: pwm: mediatek: Prevent divide-by-zero in pwm_mediatek_config() With CONFIG_COMPILE_TEST && !CONFIG_HAVE_CLK, pwm_mediatek_config() has a divide-by-zero in the following line: do_div(resolution, clk_get_rate(pc->clk_pwms[pwm->hwpwm])); due to the fact that the !CONFIG_HAVE_CLK version of clk_get_rate() returns zero. This is presumably just a theoretical problem: COMPILE_TEST overrides the dependency on RALINK which would select COMMON_CLK. Regardless it's a good idea to check for the error explicitly to avoid divide-by-zero. Fixes the following warning: drivers/pwm/pwm-mediatek.o: warning: objtool: .text: unexpected end of section [ukleinek: s/CONFIG_CLK/CONFIG_HAVE_CLK/]

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
13.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-369

Affected Products 10

VendorProductVersionRange
linuxlinux_kernel*≥4.12  –  <5.4.293
linuxlinux_kernel*≥5.5  –  <5.10.237
linuxlinux_kernel*≥5.11  –  <5.15.181
linuxlinux_kernel*≥5.16  –  <6.1.135
linuxlinux_kernel*≥6.2  –  <6.6.88
linuxlinux_kernel*≥6.7  –  <6.12.24
linuxlinux_kernel*≥6.13  –  <6.13.12
linuxlinux_kernel*≥6.14  –  <6.14.3
linuxlinux_kernel6.15any
debiandebian_linux11.0any

References 11

  • git.kernel.org https://git.kernel.org/stable/c/4cb15042b5f3ec0474e91cf379120cc597625dbb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/77fb96dbe350e8a5ae4965ff9f6e7049f3966a6b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7ca59947b5fcf94e7ea4029d1bd0f7c41500a161
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8b9f60725d74b72c238e4437c957d0217746b506
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8ddbec73ea2598d8414e8f7103241b55cf877010
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c343856ff2689ce0afef823592732fc178ef4aac
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e1206d8e1651c9f62e5640b69b14d925b1a0a00a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e3cf0c38d3ce754ad63005102fcfeb0b7ff3290b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f3e9cf266c2c103cf071e15d7a17e2c699fff3c5
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html
    Mailing List
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html
    Mailing List

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/4cb15042b5f3ec0474e91cf379120cc597625dbb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/77fb96dbe350e8a5ae4965ff9f6e7049f3966a6b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7ca59947b5fcf94e7ea4029d1bd0f7c41500a161
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8b9f60725d74b72c238e4437c957d0217746b506
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8ddbec73ea2598d8414e8f7103241b55cf877010
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c343856ff2689ce0afef823592732fc178ef4aac
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e1206d8e1651c9f62e5640b69b14d925b1a0a00a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e3cf0c38d3ce754ad63005102fcfeb0b7ff3290b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f3e9cf266c2c103cf071e15d7a17e2c699fff3c5
    Patch