CVE-2024-53191: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-53191 affects the Linux kernel's ath12k WiFi driver. The vulnerability was discovered when a double-free condition occurs during device unbinding if there is an error during firmware-related initialization. The issue was disclosed on December 27, 2024, and affects Linux kernel versions from 6.3 up to (excluding) 6.6.64, from 6.7 up to (excluding) 6.11.11, and from 6.12 up to (excluding) 6.12.2 (NVD).

The vulnerability occurs when the buffers dp->txring[i].txstatus are released during an error in firmware initialization, but these buffers are released again when the device is unbound (ath12kpci). This leads to a double-free condition, which triggers a warning: 'WARNING: CPU: 0 PID: 2098 at mm/slub.c:4689 freelarge_kmalloc+0x4d/0x80'. The issue is consistently reproducible in virtual machine environments due to MSI addressing initialization failures. The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (NVD).

The vulnerability could potentially lead to memory corruption due to the double-free condition, which could result in system crashes or potential security implications. The high CVSS score indicates that successful exploitation could lead to complete compromise of confidentiality, integrity, and availability of the affected system (NVD).

The issue has been fixed by setting the buffers to NULL after releasing them to prevent the double-free condition. The fix has been implemented in the kernel patch that modifies the ath12k driver's dp.c file (Kernel Patch). Users should update to patched kernel versions: 6.6.64 or later, 6.11.11 or later, or 6.12.2 or later.