Headline
CVE-2020-27418: [v4] vgacon: Fix a UAF in vgacon_invert_region
A Use After Free vulnerability in Fedora Linux kernel 5.9.0-rc9 allows attackers to obatin sensitive information via vgacon_invert_region() function.
Submitted by Zhang Xiaoxu on March 4, 2020, 2:24 a.m.
Details
Not browsing as part of any series.
Commit Message****Patch hide | download patch | download mbox
diff --git a/drivers/video/console/vgacon.c b/drivers/video/console/vgacon.c index de7b8382aba9…998b0de1812f 100644 — a/drivers/video/console/vgacon.c +++ b/drivers/video/console/vgacon.c @@ -1316,6 +1316,9 @@ static int vgacon_font_get(struct vc_data *c, struct console_font *font) static int vgacon_resize(struct vc_data *c, unsigned int width, unsigned int height, unsigned int user) {
- if ((width << 1) * height > vga_vram_size)
return -EINVAL;- if (width % 2 || width > screen_info.orig_video_cols || height > (screen_info.orig_video_lines * vga_default_font_height)/ c->vc_font.height)
Comments