CVE-2024-50215: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-50215 is a vulnerability in the Linux kernel's NVMe target authentication (nvmet-auth) subsystem. The issue was discovered by the Linux Verification Center (linuxtesting.org) using their Svace tool. The vulnerability affects Linux kernel versions from 6.0 up to versions before 6.1.116, 6.2 through 6.6.60, and 6.7 through 6.11.7 (NVD).

The vulnerability is related to a double-free condition in the nvmet-auth subsystem. Specifically, the ctrl->dh_key pointer might be used across multiple calls to nvmet_setup_dhgroup() for the same controller, leading to a potential double-free vulnerability later in nvmet_destroy_auth(). The issue stems from not setting the pointer to NULL after freeing it with kfree_sensitive(). The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (High), with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, indicating local access requirements but high impact potential (NVD).

The vulnerability could potentially lead to a double-free condition in the Linux kernel's NVMe target authentication system. This type of vulnerability typically can result in memory corruption, which could lead to privilege escalation, system crashes, or arbitrary code execution in the context of the kernel (NVD).

The vulnerability has been fixed by adding code to set ctrl->dh_key to NULL after calling kfree_sensitive(). The fix has been implemented in various kernel versions through patches. Users should update to Linux kernel versions 6.1.116 or later, 6.6.60 or later, or 6.11.7 or later, depending on their kernel series (Kernel Patch).