CVE-2024-42245— Revert "sched/fair: Make sure to try to detach at least one movable task"
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-42245
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Revert "sched/fair: Make sure to try to detach at least one movable task"
Source: NVD (National Vulnerability Database)
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: Revert "sched/fair: Make sure to try to detach at least one movable task" This reverts commit b0defa7ae03ecf91b8bfd10ede430cff12fcbd06. b0defa7ae03ec changed the load balancing logic to ignore env.max_loop if all tasks examined to that point were pinned. The goal of the patch was to make it more likely to be able to detach a task buried in a long list of pinned tasks. However, this has the unfortunate side effect of creating an O(n) iteration in detach_tasks(), as we now must fully iterate every task on a cpu if all or most are pinned. Since this load balance code is done with rq lock held, and often in softirq context, it is very easy to trigger hard lockups. We observed such hard lockups with a user who affined O(10k) threads to a single cpu. When I discussed this with Vincent he initially suggested that we keep the limit on the number of tasks to detach, but increase the number of tasks we can search. However, after some back and forth on the mailing list, he recommended we instead revert the original patch, as it seems likely no one was actually getting hit by the original issue.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Linux kernel 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel 存在安全漏洞,该漏洞源于 sched/fair 模块负载均衡逻辑变更导致在所有任务都被固定时忽略env.max_loop,这可能导致detach_tasks中的O(n)迭代,从而容易触发硬锁。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2024-42245
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2024-42245
请登录查看更多情报信息。
Same Patch Batch · Linux · 2024-08-07 · 19 CVEs total
| CVE-2024-42240 | x86/bhi: Avoid warning in #DB handler due to BHI mitigation | |
| CVE-2024-42232 | libceph: fix race between delayed_work() and ceph_monc_stop() | |
| CVE-2024-42234 | mm: fix crashes from deferred split racing folio migration | |
| CVE-2024-42233 | filemap: replace pte_offset_map() with pte_offset_map_nolock() | |
| CVE-2024-42235 | s390/mm: Add NULL pointer check to crst_table_free() base_crst_free() | |
| CVE-2024-42236 | usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() | |
| CVE-2024-42237 | firmware: cs_dsp: Validate payload length before processing block | |
| CVE-2024-42238 | firmware: cs_dsp: Return error if block header overflows file | |
| CVE-2024-42239 | bpf: Fail bpf_timer_cancel when callback is being cancelled | |
| CVE-2024-42250 | cachefiles: add missing lock protection when polling | |
| CVE-2024-42242 | mmc: sdhci: Fix max_seg_size for 64KiB PAGE_SIZE | |
| CVE-2024-42241 | mm/shmem: disable PMD-sized page cache if needed | |
| CVE-2024-42244 | USB: serial: mos7840: fix crash on resume | |
| CVE-2024-42243 | mm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray | |
| CVE-2024-42246 | net, sunrpc: Remap EPERM in case of connection failure in xs_tcp_setup_socket | |
| CVE-2024-42247 | wireguard: allowedips: avoid unaligned 64-bit memory accesses | |
| CVE-2024-42249 | spi: don't unoptimize message in spi_async() | |
| CVE-2024-42248 | tty: serial: ma35d1: Add a NULL check for of_node |
IV. Related Vulnerabilities
Same product: Linux
- CVE-2026-43500
rxrpc: Also unshare DATA/RESPONSE packets when paged frags a - CVE-2026-43475
scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT - CVE-2026-43474
fs: init flags_valid before calling vfs_fileattr_get - CVE-2026-43473
scsi: mpi3mr: Add NULL checks when resetting request and rep - CVE-2026-43472
unshare: fix unshare_fs() handling
Same vendor: Linux
- CVE-2026-43500
rxrpc: Also unshare DATA/RESPONSE packets when paged frags a - CVE-2026-43475
scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT - CVE-2026-43474
fs: init flags_valid before calling vfs_fileattr_get - CVE-2026-43473
scsi: mpi3mr: Add NULL checks when resetting request and rep - CVE-2026-43472
unshare: fix unshare_fs() handling
V. Comments for CVE-2024-42245
No comments yet