CVE-2024-41087: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-41087 is a double free vulnerability discovered in the Linux kernel's libata-core subsystem. The issue occurs when the ataportalloc() call in atahostalloc() fails, leading to a double free condition through the interaction between devresreleasegroup() and atahostrelease() functions. The vulnerability affects Linux kernel versions from 4.17 through 6.9.8 (NVD).

The vulnerability is triggered when ataportalloc() fails in atahostalloc(), causing execution to jump to the errout label. This calls devresreleasegroup(), which triggers atahostrelease(). Since atahostrelease() calls kfree(host), the subsequent kfree(host) in atahost_alloc() results in a double free condition. The issue has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (NVD).

The vulnerability can lead to a kernel crash (denial of service) when triggered, as evidenced by the reported kernel BUG at mm/slub.c:553 and invalid opcode error. Given the CVSS scoring, the vulnerability could potentially be exploited to achieve high impacts on confidentiality, integrity, and availability of the system (NVD).

The vulnerability has been fixed by modifying the error handling in atahostalloc() to perform kfree(host) only if the devresopengroup() call fails, preventing the double free condition. Users should update to patched kernel versions that include the fix (Kernel Patch).