{"id":"CVE-2022-49948","summary":"vt: Clear selection before changing the font","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nvt: Clear selection before changing the font\n\nWhen changing the console font with ioctl(KDFONTOP) the new font size\ncan be bigger than the previous font. A previous selection may thus now\nbe outside of the new screen size and thus trigger out-of-bounds\naccesses to graphics memory if the selection is removed in\nvc_do_resize().\n\nPrevent such out-of-memory accesses by dropping the selection before the\nvarious con_font_set() console handlers are called.","modified":"2026-04-03T13:14:34.026241346Z","published":"2025-06-18T11:00:12.364Z","related":["SUSE-SU-2025:02264-1","SUSE-SU-2025:02308-1","SUSE-SU-2025:02320-1","SUSE-SU-2025:02321-1","SUSE-SU-2025:02322-1","SUSE-SU-2025:02537-1","SUSE-SU-2025:02846-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49948.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/1cf1930369c9dc428d827b60260c53271bff3285"},{"type":"WEB","url":"https://git.kernel.org/stable/c/2535431ae967ad17585513649625fea7db28d4db"},{"type":"WEB","url":"https://git.kernel.org/stable/c/566f9c9f89337792070b5a6062dff448b3e7977f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/989201bb8c00b222235aff04e6200230d29dc7bb"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c555cf04684fde39b5b0dd9fd80730030ee10c4a"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c904fe03c4bd1f356a58797d39e2a5d0ca15cefc"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e9ba4611ddf676194385506222cce7b0844e708e"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f74b4a41c5d7c9522469917e3072e55d435efd9e"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49948.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-49948"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"009e39ae44f4191188aeb6dfbf661b771dbbe515"},{"fixed":"c555cf04684fde39b5b0dd9fd80730030ee10c4a"},{"fixed":"e9ba4611ddf676194385506222cce7b0844e708e"},{"fixed":"f74b4a41c5d7c9522469917e3072e55d435efd9e"},{"fixed":"1cf1930369c9dc428d827b60260c53271bff3285"},{"fixed":"989201bb8c00b222235aff04e6200230d29dc7bb"},{"fixed":"2535431ae967ad17585513649625fea7db28d4db"},{"fixed":"c904fe03c4bd1f356a58797d39e2a5d0ca15cefc"},{"fixed":"566f9c9f89337792070b5a6062dff448b3e7977f"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"0"},{"last_affected":"e60f8fcce05042e8f8cea25ee81fecc1222114cf"},{"last_affected":"5812a9bc9d68a82c2cc839f88e6f7a05093ab39d"},{"last_affected":"863ad19fd654c485e3beec3575c4d74a1e74369e"},{"last_affected":"dbc3fd44f957a39407e889287bf61fa0ef3ecc14"},{"last_affected":"0b2a0a58ad22f9d6dfc641bc5ec46057493f22a5"},{"last_affected":"9f2d48f0745f921040df91bfe8fa7f0339cd7497"},{"last_affected":"3425e397fb23cc2e8e6fb8f5b8226dcb447e84dd"},{"last_affected":"eeae0a12a16650ff494d5faefa371cd9e7079575"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49948.json"}}],"schema_version":"1.7.5"}