We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-50076

vt: prevent kernel-infoleak in con_font_get()



AssignerLinux
Reserved2024-10-21
Published2024-10-29
Updated2024-10-29

Description

In the Linux kernel, the following vulnerability has been resolved: vt: prevent kernel-infoleak in con_font_get() font.data may not initialize all memory spaces depending on the implementation of vc->vc_sw->con_font_get. This may cause info-leak, so to prevent this, it is safest to modify it to initialize the allocated memory space to 0, and it generally does not affect the overall performance of the system.

Product status

Default status
unaffected

05e2600cb0a4 before dc2d5f02636c
affected

05e2600cb0a4 before adb1f312f38f
affected

05e2600cb0a4 before f956052e00de
affected

Default status
affected

6.3
affected

Any version before 6.3
unaffected

6.6.58
unaffected

6.11.5
unaffected

6.12-rc4
unaffected

References

https://git.kernel.org/stable/c/dc2d5f02636c7587bdd6d1f60fc59c55860b00a4

https://git.kernel.org/stable/c/adb1f312f38f0d2c928ceaff089262798cc260b4

https://git.kernel.org/stable/c/f956052e00de211b5c9ebaa1958366c23f82ee9e

cve.org CVE-2024-50076

nvd.nist.gov CVE-2024-50076

Download JSON

Share this page
https://cve.threatint.com
Subscribe to our newsletter to learn more about our work.