CVE-2024-53098

Published: Nov 25, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: drm/xe/ufence: Prefetch ufence addr to catch bogus address access_ok() only checks for addr overflow so also try to read the addr to catch invalid addr sent from userspace. (cherry picked from commit 9408c4508483ffc60811e910a93d6425b8e63928)

Vendor	Product	Versions
Linux	Linux	affected `dd08ebf6c3525a7ea2186e636df064ea47281987 - < 5d623ffbae96b23f1fc43a3d5a267aabdb07583d` affected `dd08ebf6c3525a7ea2186e636df064ea47281987 - < 9c1813b3253480b30604c680026c7dc721ce86d1`
Linux	Linux	affected `6.8` unaffected `0 - < 6.8` unaffected `6.11.9 - <= 6.11.` unaffected `6.12 - <= `

References

https://git.kernel.org/stable/c/5d623ffbae96b23f1fc43a3d5a267aabdb07583d

https://git.kernel.org/stable/c/9c1813b3253480b30604c680026c7dc721ce86d1

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-53098

Description

Affected Products

References