A high-severity use-after-free vulnerability in the Linux kernel's drm/xe driver could lead to system instability or arbitrary code execution.

The vulnerability exists in xe_eu_stall_stream_close() where drm_dev_put() is invoked before the stream is properly disabled, leading to a race condition. This flaw is exploitable by a local authenticated user capable of interacting with the DRM subsystem.

Successful exploitation of this memory corruption vulnerability could result in a kernel panic, causing significant service disruption. Given the CVSS score of 7.8, it poses a substantial risk to system availability and integrity, potentially allowing a local attacker to escalate privileges or crash the host environment.

Immediate Action: Update the Linux kernel to the latest stable release provided by your distribution vendor that includes the fix for the drm/xe driver.

Proactive Monitoring: Monitor system logs for kernel oops or segmentation faults specifically related to the xe driver or DRM subsystems.

Compensating Controls: Restrict access to DRM device nodes to only authorized users and services to minimize the attack surface.

Public Exploit Available: false

This vulnerability represents a significant risk to kernel stability. Security teams should prioritize patching affected Linux distributions as part of their regular maintenance cycle to prevent local privilege escalation and system denial-of-service scenarios.