CVE-2026-46191
EUVD-2026-3281828.05.2026, 10:16
In the Linux kernel, the following vulnerability has been resolved: fbcon: Avoid OOB font access if console rotation fails Clear the font buffer if the reallocation during console rotation fails in fbcon_rotate_font(). The putcs implementations for the rotated buffer will return early in this case. See [1] for an example. Currently, fbcon_rotate_font() keeps the old buffer, which is too small for the rotated font. Printing to the rotated console with a high-enough character code will overflow the font buffer. v2: - fix typos in commit messageEnginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| linux | linux_kernel | 2.6.15 ≤ 𝑥 < 6.6.140 |
| linux | linux_kernel | 6.7 ≤ 𝑥 < 6.12.90 |
| linux | linux_kernel | 6.13 ≤ 𝑥 < 6.18.32 |
| linux | linux_kernel | 6.19 ≤ 𝑥 < 7.0.7 |
𝑥
= Vulnerable software versions
Debian Releases
Common Weakness Enumeration
Vulnerability Media Exposure
References