CVE-2024-53098

Опубликовано: 25 нояб. 2024

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

In the Linux kernel, the following vulnerability has been resolved:

drm/xe/ufence: Prefetch ufence addr to catch bogus address

access_ok() only checks for addr overflow so also try to read the addr to catch invalid addr sent from userspace.

(cherry picked from commit 9408c4508483ffc60811e910a93d6425b8e63928)

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия до 6.11.9 (исключая)

cpe:2.3:o:linux:linux_kernel:6.12:rc1:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.12:rc2:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.12:rc3:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.12:rc4:*:*:*:*:*:*

EPSS

Процентиль: 12%

0.0004

Низкий

7.8 High

CVSS3

Дефекты

CWE-787

Связанные уязвимости

CVE-2024-53098

CVSS3: 7.8

ubuntu

12 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: drm/xe/ufence: Prefetch ufence addr to catch bogus address access_ok() only checks for addr overflow so also try to read the addr to catch invalid addr sent from userspace. (cherry picked from commit 9408c4508483ffc60811e910a93d6425b8e63928)

CVE-2024-53098

CVSS3: 6.1

redhat

12 месяцев назад

CVE-2024-53098

msrc

3 месяца назад

drm/xe/ufence: Prefetch ufence addr to catch bogus address

CVE-2024-53098

CVSS3: 7.8

debian

12 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: d ...

GHSA-j7rp-c5hp-xpqv

CVSS3: 7.8

github

12 месяцев назад

EPSS

Процентиль: 12%

0.0004

Низкий

7.8 High

CVSS3

Дефекты

CWE-787