CVE-2024-50138: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-50138 affects the Linux kernel's BPF ring buffer implementation. The vulnerability was discovered when the function _bpfringbufreserve, which is invoked from a tracepoint that disables preemption, was found to use spinlockt inappropriately. This implementation can lead to a "sleep in atomic" warning in the RT (Real-Time) variant of the kernel (Kernel Patch). The vulnerability affects Linux kernel versions from 5.8 up to (excluding) 6.1.115 and from 6.2 up to (excluding) 6.11.6, as well as several release candidates (NVD).

The vulnerability stems from the use of spinlockt in the BPF ring buffer implementation where rawspinlockt should be used instead. When _bpfringbufreserve is called from a tracepoint context with preemption disabled, the use of regular spinlock can trigger a "sleep in atomic" warning in RT kernels. The issue has a CVSS v3.1 Base Score of 5.5 (MEDIUM) with a vector string of CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (NVD).

The vulnerability can lead to a denial of service condition in systems running the RT (Real-Time) variant of the Linux kernel. When triggered, it results in a "sleep in atomic" warning and potential system instability (Kernel Patch).

The issue has been fixed by switching from spinlockt to rawspinlock_t in the ring buffer implementation. The fix is available in Linux kernel versions 6.1.115, 6.11.6, and later releases. System administrators should update their kernel to a patched version to address this vulnerability (Kernel Patch).