{"id":"CVE-2023-3161","details":"A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel. When providing font-\u003ewidth and font-\u003eheight greater than 32 to fbcon_set_font, since there are no checks in place, a shift-out-of-bounds occurs leading to undefined behavior and possible denial of service.","modified":"2026-05-15T11:54:01.794115925Z","published":"2023-06-12T00:00:00Z","related":["ALSA-2023:7077","SUSE-SU-2023:2646-1","SUSE-SU-2023:2782-1","SUSE-SU-2023:2804-1","SUSE-SU-2023:2805-1","SUSE-SU-2023:2808-1","SUSE-SU-2023:2809-1","SUSE-SU-2023:2810-1","SUSE-SU-2023:2820-1","SUSE-SU-2023:2822-1","SUSE-SU-2023:2830-1","SUSE-SU-2023:2831-1","SUSE-SU-2023:2834-1","SUSE-SU-2023:2859-1","SUSE-SU-2023:2871-1","SUSE-SU-2023:3333-1"],"database_specific":{"cwe_ids":["CWE-1335"],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/3xxx/CVE-2023-3161.json","cna_assigner":"redhat"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/3xxx/CVE-2023-3161.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-3161"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2213485"},{"type":"FIX","url":"https://github.com/torvalds/linux/commit/2b09d5d364986f724f17001ccfe4126b9b43a0be"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}