A slab-out-of-bounds read in fbcon in the Linux kernel before 5.9.7 could be used by local attackers to read privileged information or potentially crash the kernel, aka CID-3c4e0dff2095. This occurs because KD_FONT_OP_COPY in drivers/tty/vt/vt.c can be used for manipulations such as font height.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-11-20T17:49:57
Updated: 2024-08-04T16:48:01.280Z
Reserved: 2020-11-20T00:00:00
Link: CVE-2020-28974
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-11-20T18:15:12.120
Modified: 2021-01-27T19:44:45.813
Link: CVE-2020-28974
Redhat