Matthew Brost

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue concerns a "Missing outer runtime PM protection" warning in the Linux kernel, specifically in the drm/xe/oa component. This warning is associated with a drm WARN message that includes function calls such as `xe pm runtime get noresume`, `guc exec queue add msg`, `guc exec queue fini`, `xe exec queue destroy`, and `xe oa release`. The problem has been resolved, but details about the number of potentially affected devices or real-world incidents are not provided. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a use-after-free vulnerability in the Linux kernel, specifically in the drm/xe module. This vulnerability can be exploited to impact the confidentiality, integrity, and availability of protected information. The vulnerability is caused by the improper teardown of the driver instance, leading to various use-after-free errors. The estimated number of potentially affected devices worldwide is not available. There is no information about real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to the use of memory after it has been freed, specifically in the `drm/xe` component of the Linux kernel. This can lead to a denial of service. The problem arises because the `xe exec queue put` function can destroy the VM while the job is still being freed, which depends on the job's `vm` being valid. To prevent this, the job is freed before `xe exec queue put` is called. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.