Samuel Thibault

2 exploits Active since Nov 2020
CVE-2020-28941 WRITEUP MEDIUM WRITEUP
Linux Kernel < 5.9.9 - Use-After-Free in Speakup TTY Line Discipline
An issue was discovered in drivers/accessibility/speakup/spk_ttyio.c in the Linux kernel through 5.9.9. Local attackers on systems with the speakup driver could cause a local denial of service attack, aka CID-d41227544427. This occurs because of an invalid free when the line discipline is used more than once.
CVSS 5.5
CVE-2023-3161 WRITEUP MEDIUM WRITEUP
Linux Kernel < 6.2 - Denial of Service via Framebuffer Console Font Width/Height Shift
A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel. When providing font->width and font->height greater than 32 to fbcon_set_font, since there are no checks in place, a shift-out-of-bounds occurs leading to undefined behavior and possible denial of service.
CVSS 5.5