CVE-2024-49991: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-49991 affects the Linux kernel's AMD Kernel Fusion Driver (AMDKFD). The vulnerability was discovered in the drm/amdkfd component, specifically in the amdkfd_free_gtt_mem function. The issue involves incorrect pointer handling where amdgpu_bo_unref clears a local variable instead of the original pointer, potentially leading to a use-after-free bug (Kernel Git). The vulnerability affects Linux kernel versions up to 6.6.55 and from 6.7 up to 6.10.14, as well as versions from 6.11 up to 6.11.3 (NVD).

The vulnerability exists in the amdkfd_free_gtt_mem function where the pointer reference handling is incorrect. The function was passing a direct pointer to amdgpu_bo_unref instead of a pointer reference, causing the function to clear only the local variable while leaving the original pointer unchanged. This implementation flaw could result in a use-after-free condition. The issue has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (NVD).

The vulnerability could lead to use-after-free conditions in the Linux kernel's AMD graphics driver, potentially allowing an attacker with local access to escalate privileges, cause denial of service, or leak information. The high CVSS score indicates significant potential impact on system confidentiality, integrity, and availability (NVD).

The vulnerability has been patched in the Linux kernel. The fix involves modifying the amdkfd_free_gtt_mem function to pass pointer references correctly to amdgpu_bo_unref. Users should update their Linux kernel to versions that include the fix. For Debian systems, fixed versions are available in bookworm (6.1.128-1) and sid/trixie (6.12.17-1) (Debian Tracker).