Vulnerability in Linux Kernel (Fbcon)

CVE-2023-3161

A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel. When providing font->width and font->height greater than 32 to fbcon_set_font, since there are no checks in place, a shift-out-of-bounds occurs leading to undefined b…

EPSS: 0.000 (2.4th percentile) — read the EPSS interpretation.

Affected products

  • N/a Linux Kernel (Fbcon) — versions Fixed in kernel 6.2-rc7

Weakness classification (CWE)

References