CVE-2024-45013: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-45013 affects the Linux kernel's NVMe driver. The vulnerability was introduced when commit 4733b65d82bd moved the keep-alive start functionality from nvme_start_ctrl() to nvme_init_ctrl_finish() without moving the corresponding stop functionality to nvme_uninit_ctrl(). This oversight allows the keep-alive work to remain pending after controller startup failures, potentially leading to a use-after-free condition when the NVMe host driver is unloaded (Kernel Patch).

The vulnerability stems from improper synchronization of keep-alive functionality in the NVMe driver. The issue occurs because the keep-alive stop operation remains in nvme_stop_ctrl() while the start operation was moved to nvme_init_ctrl_finish(). This mismatch in initialization and cleanup locations can result in a use-after-free vulnerability when the controller fails to start properly and the driver is subsequently unloaded. The vulnerability has been assigned a CVSS v3.1 base score of 5.5 (MEDIUM) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (NVD).

When exploited, this vulnerability can trigger a kernel panic during NVMe device operations, specifically when connection failures occur during the nvme/004 test. This represents a significant reliability issue as it can lead to system crashes and potential denial of service conditions (Kernel Patch).

The issue has been fixed by moving the nvme_stop_keep_alive() function call into nvme_uninit_ctrl(), ensuring proper cleanup synchronization with the initialization in nvme_init_ctrl_finish(). The fix has been implemented in the kernel patch and is available in updated kernel versions (Kernel Patch).