Linux · Linux Kernel · CVE-2024-53098
**Name of the Vulnerable Software and Affected Versions**
Linux kernel (affected versions not specified)
**Description**
A vulnerability in the Linux kernel has been resolved. The issue is related to the `drm/xe/ufence` component, where the `access ok()` function only checks for address overflow, but not for invalid addresses sent from userspace. To catch such invalid addresses, the code now prefetches the ufence address and attempts to read it. This change aims to prevent exploitation of bogus addresses.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.