CVE-2024-49876: 
Linux Debian vulnerability analysis and mitigation

CVE-2024-49876 affects the Linux kernel's DRM/XE driver, specifically related to queue destruction handling. The vulnerability was discovered in October 2024 and involves a Use-After-Free (UAF) condition that occurs during queue destruction when the driver instance is torn down (NVD). The issue affects Linux kernel versions from 6.8 up to (excluding) 6.10.14 and from 6.11 up to (excluding) 6.11.3.

The vulnerability stems from queuing the final destruction step on a random system workqueue that outlives the driver instance. Under certain timing conditions, the driver teardown can occur while one or more workqueue tasks are still active, leading to Use-After-Free (UAF) issues. The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (NVD).

The vulnerability could allow an attacker to cause a denial of service through system crashes or potentially execute arbitrary code through the Use-After-Free condition. This affects the system's stability and security, particularly in environments where the Intel GPU drivers are in use (NVD).

The issue has been fixed in Linux kernel versions 6.10.14 and 6.11.3. The fix involves adding a fini step to ensure user queues are properly torn down and implementing a waitqueue mechanism to wait for the xaarray to become empty before triggering the drain. The patch also introduces a new destroywq workqueue to handle queue destruction properly (Kernel Patch).