{"id":"CVE-2020-29371","details":"An issue was discovered in romfs_dev_read in fs/romfs/storage.c in the Linux kernel before 5.8.4. Uninitialized memory leaks to userspace, aka CID-bcf85fcedfdd.","modified":"2026-03-13T00:40:19.614051Z","published":"2020-11-28T07:15:11.663Z","related":["SUSE-SU-2020:3713-1","SUSE-SU-2020:3717-1","SUSE-SU-2020:3718-1","SUSE-SU-2020:3748-1","SUSE-SU-2020:3764-1","SUSE-SU-2020:3766-1","SUSE-SU-2020:3798-1","SUSE-SU-2021:0097-1","SUSE-SU-2021:0098-1","SUSE-SU-2021:0434-1","SUSE-SU-2021:0438-1","openSUSE-SU-2020:2161-1","openSUSE-SU-2020:2193-1","openSUSE-SU-2020:2260-1","openSUSE-SU-2021:0242-1"],"references":[{"type":"ADVISORY","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.8.4"},{"type":"REPORT","url":"https://bugs.chromium.org/p/project-zero/issues/detail?id=2077"},{"type":"FIX","url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=2935e0a3cec1ffa558eea90db6279cff83aa3592"},{"type":"FIX","url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=bcf85fcedfdd17911982a3e3564fcfec7b01eebd"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-29371.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"5.8.4"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}]}