CVE-2024-50078: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-50078 affects the Linux kernel's Bluetooth subsystem. The vulnerability was discovered when the isoexit() function was not being called during module unload after isoinit() had been called. This issue affects Linux kernel versions from 6.0 up to (excluding) 6.1.114, 6.2 up to (excluding) 6.6.58, and 6.7 up to (excluding) 6.11.5 (NVD).

The vulnerability occurs in the Bluetooth module's cleanup process. When isoinit() has been called, the corresponding isoexit() must be called on module unload. Without proper cleanup, the struct proto that isoinit() registered with protoregister() becomes invalid, which can lead to unpredictable behavior. The issue has a CVSS v3.1 Base Score of 5.5 (MEDIUM) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (NVD).

When the vulnerability is triggered, particularly with CONFIGLISTHARDENED and CONFIGBUGONDATACORRUPTION enabled, attempting to load the module again typically results in a list_add corruption bug, causing a kernel crash. This can lead to a denial of service condition (Kernel Patch).

The vulnerability has been patched in the Linux kernel by adding a call to iso_exit() in the module cleanup routine. The fix has been backported to affected stable kernel versions. Users should update to Linux kernel versions 6.1.114, 6.6.58, or 6.11.5 or later, depending on their kernel series (NVD).