CVE-2024-53143: 
Linux Kernel vulnerability analysis and mitigation

In the Linux kernel, a vulnerability (CVE-2024-53143) was discovered in the fsnotify subsystem related to the ordering of iput() and watched_objects decrement operations. The issue was disclosed in December 2024 and affects the Linux kernel's file system notification infrastructure (NVD, Kernel Git).

The vulnerability stems from incorrect ordering of operations in the fsnotify subsystem. Specifically, the issue occurs when holding a reference to an inode without ensuring the superblock stays alive through the watched_objects count. This can lead to a Use-After-Free (UAF) vulnerability of sb->s_fs_info in tmpfs. Additionally, fsnotify_put_sb_watched_objects() could potentially call fsnotify_sb_watched_objects() on an already freed superblock, causing a UAF read of sb->s_fsnotify_info. The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (High) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (NVD).

The vulnerability could potentially lead to a Use-After-Free condition in the kernel's file system notification infrastructure. While the UAF is described as hard to trigger due to race orderings that typically result in system crashes first, successful exploitation could potentially lead to privilege escalation or system compromise (Kernel Git).

The vulnerability has been fixed in the Linux kernel through a patch that ensures proper ordering of operations. The fix involves ensuring the superblock is kept alive until iput() is complete, and properly handling the watched_objects count decrement. The patch has been merged into the kernel mainline and is being backported to stable kernel versions (Kernel Git).