CVE-2024-23848: 
Linux Kernel vulnerability analysis and mitigation

A use-after-free vulnerability was discovered in the Linux kernel through version 6.7.1, identified as CVE-2024-23848. The vulnerability exists in the CEC (Consumer Electronics Control) driver, specifically in the cec_queue_msg_fh function, affecting the drivers/media/cec/core/cec-adap.c and drivers/media/cec/core/cec-api.c components (NVD, Ubuntu).

The vulnerability is classified as a use-after-free condition (CWE-416) where one thread takes the lock of a struct cec_fh while another thread frees it without checking if any other thread is holding the lock. This race condition leads to potential memory corruption when the first thread attempts to access fh->msgs after it has been freed. The vulnerability has been assigned a CVSS v3.1 base score of 5.5 (Medium), with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (NVD).

The vulnerability can be exploited by a local attacker to cause a denial of service condition through system crashes or potentially execute arbitrary code. The impact is primarily focused on system availability, as indicated by the CVSS scoring which shows high impact on availability but no direct impact on confidentiality or integrity (Ubuntu).

Multiple Linux distributions have released fixes for this vulnerability. Ubuntu has fixed the issue in versions 6.8.0-44.44 for 24.04 LTS and 5.15.0-121.131 for 22.04 LTS. Debian has also addressed the vulnerability with fixes in various versions including 5.10.234-1 for bullseye and 6.1.128-1 for bookworm (Ubuntu, Debian Tracker).