A proof-of-concept (PoC) exploit has been released for a high-severity out-of-bounds write vulnerability in the Linux kernel, identified as CVE-2024-53104. The vulnerability exists within the USB Video Class (UVC) driver and can lead to privilege escalation.

The flaw stems from improper parsing of UVC_VS_UNDEFINED frames within the uvc_parse_format function. This can cause miscalculation of buffer sizes, leading to out-of-bounds memory writes.