Jackson Cody

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.17.0-rc6-ci-drm-11296+ #1 **Description** A missing bounds check in the `vm access()` function can lead to an out-of-bounds read or write in the adjacent memory area. This issue is related to the `len` attribute not being validated before the `memcpy` later in the function. The problem can potentially cause a page fault, as indicated by the error message `BUG: unable to handle page fault for address`. The `vm access()` function is part of the `drm/i915/gem` module. **Recommendations** For Linux kernel version 5.17.0-rc6-ci-drm-11296+ #1, update to a version that includes the fix for the missing boundary check in `vm access()`. As a temporary workaround, consider restricting access to the `vm access()` function until a patch is available.