CVE-2024-50113 is a vulnerability identified in the Linux kernel's FireWire (IEEE 1394) core subsystem. The issue stems from a coding error introduced during a refactoring commit (24b7f8e5cd65) that implemented helper functions for handling the self ID sequence enumeration of FireWire devices. These helper functions, although covered by KUnit tests, incorrectly assign an invalid port index value to the parent device when enumerating extra node devices with three or more ports connected to a 1394 OHCI controller. This incorrect port index leads to an invalid memory address calculation during the update of the FireWire device tree cache. When this invalid address is accessed, it triggers a WARN_ON() kernel warning and results in a general protection fault (GPF), causing a kernel crash or system instability. The vulnerability specifically affects configurations where complex FireWire device topologies exist, involving nodes with multiple ports. The patch for this vulnerability corrects the port index assignment to ensure valid memory access and prevent the kernel fault. No known exploits are currently reported in the wild, and no CVSS score has been assigned yet.

For European organizations, the impact of CVE-2024-50113 is primarily related to system availability and stability. Systems running Linux kernels with affected FireWire support and connected to multi-port FireWire devices may experience kernel panics or crashes, leading to denial of service conditions. This can disrupt critical operations, especially in environments where FireWire is used for high-speed data transfer, such as multimedia production, scientific instrumentation, or industrial control systems. Although FireWire usage has declined in recent years, legacy systems and specialized equipment in sectors like broadcasting, research, and manufacturing may still rely on it. The vulnerability does not appear to allow privilege escalation or remote code execution directly, limiting confidentiality and integrity impacts. However, repeated crashes could lead to operational downtime and potential data loss if systems are not properly backed up or if the crashes occur during critical processing.

European organizations should prioritize updating their Linux kernel to the latest stable version that includes the fix for CVE-2024-50113. Specifically, kernel maintainers and system administrators should verify that the patch correcting the port index assignment in the FireWire core is applied. For systems where FireWire devices with three or more ports are connected, consider temporarily disabling FireWire support if kernel updates cannot be immediately applied, to prevent exploitation of the vulnerability. Additionally, organizations should audit their hardware inventory to identify the presence of FireWire devices and assess their necessity. Implementing kernel crash monitoring and alerting can help detect and respond to potential exploitation attempts or system instability caused by this vulnerability. For environments with legacy or specialized equipment relying on FireWire, coordinate with vendors to ensure firmware and driver compatibility with patched kernels. Finally, maintain regular backups and disaster recovery plans to mitigate the impact of potential system crashes.