A vulnerability was found in Linux Kernel where the value of vc->vc_origin is not updated in time while invoking vc_do_resize, leading to out-of-bounds write in fbcon_redraw_softback.
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Name: Yuan Ming (Tsinghua University)
Due to this flaw requiring a local user to trigger by using frame buffer fbcon, the impact has been rated as Low.
Created kernel tracking bugs for this issue:
Affects: fedora-all [bug 1879955]
This was fixed for Fedora with the 5.8.10 stable kernel updates.
Before closing, checked that for the rhel-9 fixed.