PT-2024-34040 · Linux+7 · Linux Kernel+7

Andrey Shumilin

·

Published

2024-11-07

·

Updated

2025-10-03

·

CVE-2024-50205

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.61
Description: A division by zero vulnerability has been resolved in the Linux kernel, specifically in the ALSA firewire-lib component. The issue occurred in the apply constraint to size() function, where the step variable was initialized to zero and could remain zero if not changed in the loop, leading to a division by zero error. This behavior was introduced by a previous commit and was difficult to identify due to the complexity of the snd interval test() condition and the amdtp rate table[] table. The vulnerability was found by the Linux Verification Center with SVACE.
Recommendations: For Linux kernel versions prior to 6.6.61, update to version 6.6.61 or later to resolve the issue. As a temporary workaround, consider adding a variable check before the division in the apply constraint to size() function to prevent the division by zero error.

Exploit

Fix

Use of Uninitialized Resource

Divide By Zero

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-908CWE-369

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2024-15251
ALT-PU-2024-15739
ALT-PU-2024-16172
ALT-PU-2024-17099
ALT-PU-2024-17211
ALT-PU-2025-12647
AZL-53025
AZL-53106
BDU:2025-04418
CVE-2024-50205
DLA-4008-1
DLA-4075-1
MGASA-2024-0368
MGASA-2024-0369
OESA-2024-2491
OESA-2024-2492
OESA-2024-2493
OESA-2024-2494
OPENSUSE-SU-2024:14500-1
OPENSUSE-SU-2024_4313-1
OPENSUSE-SU-2024_4314-1
OPENSUSE-SU-2024_4315-1
OPENSUSE-SU-2024_4316-1
OPENSUSE-SU-2024_4346-1
OPENSUSE-SU-2024_4376-1
OPENSUSE-SU-2025:14705-1
OPENSUSE-SU-2025_1416-1
OPENSUSE-SU-2025_1422-1
OPENSUSE-SU-2025_1423-1
OPENSUSE-SU-2025_1425-1
OPENSUSE-SU-2025_1445-1
OPENSUSE-SU-2025_1448-1
OPENSUSE-SU-2025_1454-1
OPENSUSE-SU-2025_1463-1
SUSE-SU-2024:4313-1
SUSE-SU-2024:4314-1
SUSE-SU-2024:4315-1
SUSE-SU-2024:4316-1
SUSE-SU-2024:4317-1
SUSE-SU-2024:4318-1
SUSE-SU-2024:4345-1
SUSE-SU-2024:4346-1
SUSE-SU-2024:4364-1
SUSE-SU-2024:4376-1
SUSE-SU-2024:4387-1
SUSE-SU-2024:4388-1
SUSE-SU-2025:1416-1
SUSE-SU-2025:1422-1
SUSE-SU-2025:1423-1
SUSE-SU-2025:1425-1
SUSE-SU-2025:1445-1
SUSE-SU-2025:1448-1
SUSE-SU-2025:1454-1
SUSE-SU-2025:1463-1
SUSE-SU-2025:20163-1
SUSE-SU-2025:20164-1
SUSE-SU-2025:20246-1
SUSE-SU-2025:20247-1
USN-7276-1
USN-7277-1
USN-7288-1
USN-7288-2
USN-7289-1
USN-7289-2
USN-7289-3
USN-7289-4
USN-7291-1
USN-7293-1
USN-7294-1
USN-7294-2
USN-7294-3
USN-7294-4
USN-7295-1
USN-7305-1
USN-7308-1
USN-7310-1
USN-7331-1
USN-7388-1
USN-7389-1
USN-7390-1
USN-7393-1
USN-7401-1
USN-7413-1
USN-7449-1
USN-7449-2
USN-7450-1
USN-7451-1
USN-7452-1
USN-7453-1
USN-7458-1
USN-7468-1
USN-7523-1
USN-7524-1
USN-7539-1
USN-7540-1

Affected Products

Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu