In the function sbusfb_ioctl_helper() in drivers/video/fbdev/sbuslib.c in the Linux kernel up to and including 4.15, an integer signedness error allows arbitrary information leakage for the FBIOPUTCMAP_SPARC and FBIOGETCMAP_SPARC commands.
Created kernel tracking bugs for this issue:
Affects: fedora-all [bug 1541241]
Sparc is not a supported architecture for Fedora, so this does not impact Fedora users
This issue does not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 5, 6, 7, its real-time kernel, Red Hat Enterprise MRG 2, Red Hat Enterprise Linux 7 for ARM 64 and Red Hat Enterprise Linux 7 for Power 9 LE, as the code with the flaw is not built and is not shipped with the products listed.