In the Linux kernel, the following vulnerability has been...
High severity
Unreviewed
Published
Nov 26, 2024
to the GitHub Advisory Database
•
Updated Dec 24, 2024
Description
Published by the National Vulnerability Database
Nov 25, 2024
Published to the GitHub Advisory Database
Nov 26, 2024
Last updated
Dec 24, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/xe/ufence: Prefetch ufence addr to catch bogus address
access_ok() only checks for addr overflow so also try to read the addr
to catch invalid addr sent from userspace.
(cherry picked from commit 9408c4508483ffc60811e910a93d6425b8e63928)
References