A buffer over-read (at the framebuffer layer) in the fbcon code in the Linux kernel before 5.8.15 could be used by local attackers to read kernel memory, aka CID-6735b4632def.
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-28915.json"
[
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@6735b4632def0640dbdf4eb9f99816aca18c4f16",
"digest": {
"line_hashes": [
"16107601600391065999248242752055453922",
"204024155375715456168619264150796249528",
"275680593641571912728862248331646631375",
"220277378893263025819148308510069092117",
"224266665783205116095533968938572698884",
"314769488706854265116517697810417482237",
"35031425977467137958060287955576480128",
"273127612310206314774157057108341515566",
"119657256068906454771444514020927079190"
],
"threshold": 0.9
},
"id": "CVE-2020-28915-06e365a0",
"deprecated": false,
"target": {
"file": "lib/fonts/font_8x8.c"
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@6735b4632def0640dbdf4eb9f99816aca18c4f16",
"digest": {
"line_hashes": [
"32026296180101807566579698121500501933",
"26899257804216450190047742987010852257",
"275680593641571912728862248331646631375",
"8997858673742340163974432563035694066",
"44896711647929004923575540540064538768",
"91938837811337706582818284041053002318",
"245552051463084345717938635456106861335",
"100152893739785530272724271023782185470",
"299178804943829830079268845496913585478",
"176744865186414205159267672949664788393",
"89441066812310671502334534048462504472"
],
"threshold": 0.9
},
"id": "CVE-2020-28915-181921af",
"deprecated": false,
"target": {
"file": "lib/fonts/font_6x10.c"
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@6735b4632def0640dbdf4eb9f99816aca18c4f16",
"digest": {
"line_hashes": [
"161530072708167044077690996200778804767",
"30693798141752509258083836217878342238",
"275680593641571912728862248331646631375",
"210796190739610394995596541501031680206",
"221448606995620733402125966022151651699",
"207393351355160450488848317663189295647",
"83230819527460173544369935161347515715",
"286045703923979508721727868817805884595",
"98577762578758365666277020344029321808"
],
"threshold": 0.9
},
"id": "CVE-2020-28915-2393c17a",
"deprecated": false,
"target": {
"file": "lib/fonts/font_7x14.c"
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@6735b4632def0640dbdf4eb9f99816aca18c4f16",
"digest": {
"line_hashes": [
"226665521571725690761529674385390575391",
"220006103242399296260069219236809642169",
"78326934733820047778545823768169960726",
"263880836594784852362288042033751150407",
"33947875666463226509579583623886270395",
"340045678343684279822823806475591505022",
"269375434733202278131301464622331043055",
"307132582585421999280238703575899680787",
"61760046440813479586890348731515074221",
"97243800501494969876551670431566991302",
"142527043235407301500447968928928126577"
],
"threshold": 0.9
},
"id": "CVE-2020-28915-3c50532c",
"deprecated": false,
"target": {
"file": "lib/fonts/font_mini_4x6.c"
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@6735b4632def0640dbdf4eb9f99816aca18c4f16",
"digest": {
"line_hashes": [
"82493886461265426297492510818594471887"
],
"threshold": 0.9
},
"id": "CVE-2020-28915-57876c98",
"deprecated": false,
"target": {
"file": "include/linux/font.h"
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@6735b4632def0640dbdf4eb9f99816aca18c4f16",
"digest": {
"line_hashes": [
"236373278156118883406028721553772491937",
"25302733761288971400698980887980919956",
"226247150180206448692965093457912601253",
"241784584249110765610741766847087819816",
"98172750107684937236332775483497464939",
"40141860140889140681799460099375247662",
"129782516037299659145911278254864995772",
"241733206460640903268522480529332111095",
"302401373945764768672201501279806052423",
"147203720482496505138974123446904519733"
],
"threshold": 0.9
},
"id": "CVE-2020-28915-5af3327a",
"deprecated": false,
"target": {
"file": "lib/fonts/font_sun12x22.c"
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@5af08640795b2b9a940c9266c0260455377ae262",
"digest": {
"line_hashes": [
"154185241349824104539791036520132397570",
"188770258363631546650049570292160776550",
"156376654716902082776504680691831833710",
"332322819547296841651241089556431638467",
"26814232210448446576011522377155236145",
"237092281483842304414999417860436918991",
"52387939189315587790208445937899985509",
"193281366569262664694070811114494261561",
"133229760575370022344275482896350200368",
"280228507704507877494403716985594524023",
"78962172446482128884905190429459411256",
"178346629782697679341271616938046372680",
"55676864531086013682636543360373570639",
"190785877746836720786660754916710169752",
"86035583166590711773950198411190632376",
"48023013544283143611978959878224000197"
],
"threshold": 0.9
},
"id": "CVE-2020-28915-6140f161",
"deprecated": false,
"target": {
"file": "drivers/video/fbdev/core/fbcon.c"
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@6735b4632def0640dbdf4eb9f99816aca18c4f16",
"digest": {
"line_hashes": [
"30326888808105761730394247261688911312",
"161869337230821986944546301244797936861",
"70762132083121403870293444189741639672",
"41560669441995420579358710955712716061",
"52738737755922991468609454541418366400",
"185775286742393483335651577497031000584",
"293420024372836111510539267175931752270",
"247537857293328325469165560016347137017",
"231375436726147436155627392276224394521",
"274011240073406220550293461289644693292",
"3230194282224782177657631649848782654",
"167924571795575130815267016759033298276"
],
"threshold": 0.9
},
"id": "CVE-2020-28915-7902bf94",
"deprecated": false,
"target": {
"file": "lib/fonts/font_sun8x16.c"
}
},
{
"signature_type": "Function",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@5af08640795b2b9a940c9266c0260455377ae262",
"digest": {
"function_hash": "24322489885861002360384709705025762147",
"length": 1301.0
},
"id": "CVE-2020-28915-86c25163",
"deprecated": false,
"target": {
"file": "drivers/video/fbdev/core/fbcon.c",
"function": "fbcon_get_font"
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@6735b4632def0640dbdf4eb9f99816aca18c4f16",
"digest": {
"line_hashes": [
"233278985632947144203410233749844026585",
"89599393534789296297074791837376972807",
"275680593641571912728862248331646631375",
"63144029687421660621252183628670552331",
"119087160061841411269985671664754643119",
"272018281518517080737260197561465543746",
"182440276236304068561645464333595056440",
"89143924054714369085975184630952129097",
"196303087957599354942328919801586555860"
],
"threshold": 0.9
},
"id": "CVE-2020-28915-9539e1a6",
"deprecated": false,
"target": {
"file": "lib/fonts/font_6x11.c"
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@6735b4632def0640dbdf4eb9f99816aca18c4f16",
"digest": {
"line_hashes": [
"259580111394078435343397935690506889760",
"78851142846412354754995739460413733408",
"275680593641571912728862248331646631375",
"33697296304902313160445274340109714498",
"163403584849012634752617572290264773978",
"24903712246751104816237940546834641625",
"299552819544853196809178267150510503845",
"221627142636377734710366658086951311720",
"314615804023712029860457620585677093678",
"238258544590797549992225788575861445255",
"177198750643787726491186021831530099065"
],
"threshold": 0.9
},
"id": "CVE-2020-28915-a4eb2da6",
"deprecated": false,
"target": {
"file": "lib/fonts/font_pearl_8x8.c"
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@6735b4632def0640dbdf4eb9f99816aca18c4f16",
"digest": {
"line_hashes": [
"209520054747542396825807644879864646613",
"291984317898455009631159139867977849206",
"226247150180206448692965093457912601253",
"169834142499129300689310583412943540832",
"320129891045813226252421121179499689273",
"191907180780501571276744499230273283402",
"303484381899106224260791042001294954129",
"82409972464989463571002127868398966651",
"48370411499596626597006083765433948643",
"111374071704949098314826123832178626790"
],
"threshold": 0.9
},
"id": "CVE-2020-28915-ba8f211e",
"deprecated": false,
"target": {
"file": "lib/fonts/font_10x18.c"
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@6735b4632def0640dbdf4eb9f99816aca18c4f16",
"digest": {
"line_hashes": [
"83556686149575247706169967869140771772",
"37386663188019263203634556257299147637",
"110355420031326397613479588121700179678",
"47429025187344691153599270827712706380",
"241296401228536482253481127107937132954",
"250451938939190435008387997820042105646",
"11988033739876529760027736989160455513",
"47760535724175688018811741533229655234",
"170433330116405488381931612977418820530",
"277691594325985146539631951946144295171",
"304604268692013636332462553624615483599"
],
"threshold": 0.9
},
"id": "CVE-2020-28915-bb07e4ac",
"deprecated": false,
"target": {
"file": "lib/fonts/font_ter16x32.c"
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@6735b4632def0640dbdf4eb9f99816aca18c4f16",
"digest": {
"line_hashes": [
"271170891592617403615366730599300411459",
"242259783932833712369381519769622366320",
"3895382854558209530491323737805569907",
"165880470266517999049597858438809293286",
"29359756003008901309938487091645148720",
"85181976957396232604534130083225835474",
"62818771457901262744916883256461923499",
"119267803075352700489824512560445400868",
"62266093245075410455199986762121162022",
"228735635474687963706179615475094840702",
"144904537172951196091086854446146463364",
"208996703069866874830271920718583914143"
],
"threshold": 0.9
},
"id": "CVE-2020-28915-c653e7fe",
"deprecated": false,
"target": {
"file": "lib/fonts/font_acorn_8x8.c"
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@6735b4632def0640dbdf4eb9f99816aca18c4f16",
"digest": {
"line_hashes": [
"254208264656265691869521058129299399879",
"115032886376131738009696368732732300272",
"84180698129324023977380973695761437328",
"275680593641571912728862248331646631375",
"73436194449500690489018542934778208534",
"218933579032814817026736601232931871229",
"30645635485289891494392737404149343165",
"180330975233965059487795543712932935140",
"49584165479012828500241557747479557380",
"194293802381473752883240007619749932079",
"70755581826687549553824228357050200645"
],
"threshold": 0.9
},
"id": "CVE-2020-28915-fd53a299",
"deprecated": false,
"target": {
"file": "lib/fonts/font_8x16.c"
}
}
]