CVE-2026-43182 - Vulnerability Details

- media: ccs: Avoid possible division by zero

Description

In the Linux kernel, the following vulnerability has been resolved:

media: ccs: Avoid possible division by zero

Calculating maximum M for scaler configuration involves dividing by
MIN_X_OUTPUT_SIZE limit register's value. Albeit the value is presumably
non-zero, the driver was missing the check it in fact was. Fix this.

Published: 2026-05-06

Score: n/a

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

A missing check in the Linux media ccs driver can cause a division by zero when calculating the maximum scaling factor, which in turn may trigger a kernel panic and lead to a denial of service for the affected system. The flaw stems from an arithmetic error caused by an unchecked MIN_X_OUTPUT_SIZE register value, and does not provide a direct remote code execution path.

Affected Systems

The vulnerability is present in the Linux kernel, specifically within the media subsystem's ccs scaler configuration. It applies to all kernel releases that include the vulnerable media driver prior to the patch, as identified by the vendor "Linux:Linux". No specific version numbers are listed in the CNA data, so all upstream kernels that compile this module are potentially affected.

Risk and Exploitability

The CVSS score is not provided and the EPSS score is unavailable; the issue is not listed in CISA's KEV catalog. Exploitation would require local access to load or manipulate the media driver, likely requiring elevated privileges. Given the lack of a publicly identified remote attack vector, the risk is primarily a local denial of service with a low to moderate likelihood of exploitation under normal operating conditions.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`ccfc97bdb5ae8b8edc55169ac6924e08449836ac`	affected	< b6e0529c300e44153fc6f3b565e28163caf1f031
`ccfc97bdb5ae8b8edc55169ac6924e08449836ac`	affected	< 9aae0f31d37a8facd25e37c0f0709ea08de83802
`ccfc97bdb5ae8b8edc55169ac6924e08449836ac`	affected	< c9af1818387f5c6f543e2e02c40b3038eae86be8
`ccfc97bdb5ae8b8edc55169ac6924e08449836ac`	affected	< 32a21ed2ad743fe2d12af48e627089b921a032c2
`ccfc97bdb5ae8b8edc55169ac6924e08449836ac`	affected	< a8ff58cc8c7514c278ba0ea2c787d4bf9eeb355d
`ccfc97bdb5ae8b8edc55169ac6924e08449836ac`	affected	< 8ca7df18e7a58a0e5b0ed9eaaa34e16fc5cb9680
`ccfc97bdb5ae8b8edc55169ac6924e08449836ac`	affected	< 679f0b7b6a409750a25754c8833e268e5fdde742

Linux

affected

Version	Status	Constraints
`3.5`	affected	—
`0`	unaffected	< 3.5
`5.15.202`	unaffected	≤ 5.15.*
`6.1.165`	unaffected	≤ 6.1.*
`6.6.128`	unaffected	≤ 6.6.*
`6.12.75`	unaffected	≤ 6.12.*
`6.18.16`	unaffected	≤ 6.18.*
`6.19.6`	unaffected	≤ 6.19.*
`7.0`	unaffected	≤ *

No data.

Vendor Product Confidence Versions

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`[ccfc97bdb5ae8b8edc55169ac6924e08449836ac,b6e0529c300e44153fc6f3b565e28163caf1f031)`	affected	code_commit	—
`[ccfc97bdb5ae8b8edc55169ac6924e08449836ac,9aae0f31d37a8facd25e37c0f0709ea08de83802)`	affected	code_commit	—
`[ccfc97bdb5ae8b8edc55169ac6924e08449836ac,a8ff58cc8c7514c278ba0ea2c787d4bf9eeb355d)`	affected	code_commit	—
`[ccfc97bdb5ae8b8edc55169ac6924e08449836ac,32a21ed2ad743fe2d12af48e627089b921a032c2)`	affected	code_commit	—
`[ccfc97bdb5ae8b8edc55169ac6924e08449836ac,679f0b7b6a409750a25754c8833e268e5fdde742)`	affected	code_commit	—
`[ccfc97bdb5ae8b8edc55169ac6924e08449836ac,8ca7df18e7a58a0e5b0ed9eaaa34e16fc5cb9680)`	affected	code_commit	—
`[ccfc97bdb5ae8b8edc55169ac6924e08449836ac,c9af1818387f5c6f543e2e02c40b3038eae86be8)`	affected	code_commit	—

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`3.5`	affected	generic	—
`[0,3.5)`	unaffected	generic	—
`[5.15.202,6.0)`	unaffected	generic	—
`[6.1.165,7.0)`	unaffected	generic	—
`[6.6.128,7.0)`	unaffected	generic	—
`[6.12.75,7.0)`	unaffected	generic	—
`[6.18.16,7.0)`	unaffected	generic	—
`[6.19.6,7.0)`	unaffected	generic	—
`[7.0,*]`	unaffected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update the Linux kernel to a version that includes the patched media ccs driver
If an immediate kernel upgrade is not possible, rebuild the kernel from source and apply the commit that adds the missing check to the ccs driver before installing the updated module
As a temporary workaround, disable or blacklist the media ccs module until an updated kernel is available

Generated by OpenCVE AI on May 6, 2026 at 15:30 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/32a21ed2ad743fe2d12af48e627089b921a032c2
https://git.kernel.org/stable/c/679f0b7b6a409750a25754c8833e268e5fdde742
https://git.kernel.org/stable/c/8ca7df18e7a58a0e5b0ed9eaaa34e16fc5cb9680
https://git.kernel.org/stable/c/9aae0f31d37a8facd25e37c0f0709ea08de83802
https://git.kernel.org/stable/c/a8ff58cc8c7514c278ba0ea2c787d4bf9eeb355d
https://git.kernel.org/stable/c/b6e0529c300e44153fc6f3b565e28163caf1f031
https://git.kernel.org/stable/c/c9af1818387f5c6f543e2e02c40b3038eae86be8

History

Wed, 06 May 2026 16:00:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-369

Wed, 06 May 2026 12:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: media: ccs: Avoid possible division by zero Calculating maximum M for scaler configuration involves dividing by MIN_X_OUTPUT_SIZE limit register's value. Albeit the value is presumably non-zero, the driver was missing the check it in fact was. Fix this.
Title		media: ccs: Avoid possible division by zero
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/32a21ed2ad743fe2d12af48e627089b921a032c2 https://git.kernel.org/stable/c/679f0b7b6a409750a25754c8833e268e5fdde742 https://git.kernel.org/stable/c/8ca7df18e7a58a0e5b0ed9eaaa34e16fc5cb9680 https://git.kernel.org/stable/c/9aae0f31d37a8facd25e37c0f0709ea08de83802 https://git.kernel.org/stable/c/a8ff58cc8c7514c278ba0ea2c787d4bf9eeb355d https://git.kernel.org/stable/c/b6e0529c300e44153fc6f3b565e28163caf1f031 https://git.kernel.org/stable/c/c9af1818387f5c6f543e2e02c40b3038eae86be8

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-06T11:27:54.307Z

Updated: 2026-05-06T11:27:54.307Z

Reserved: 2026-05-01T14:12:55.991Z

Link: CVE-2026-43182

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-05-06T12:16:36.787

Modified: 2026-05-06T13:07:51.607

Link: CVE-2026-43182

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-06T16:15:06Z

Weaknesses

CWE-369

Impact

Affected Systems

Risk and Exploitability

Tracking

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object