Linux · Linux Kernel · CVE-2024-26686
**Name of the Vulnerable Software and Affected Versions**
Linux kernel (affected versions not specified)
**Description**
A vulnerability in the Linux kernel has been resolved. The issue is related to the `do task stat()` function, which can trigger a hard lockup if `NR CPUS` threads call it at the same time and the process has `NR THREADS`. This can cause the system to spin with irqs disabled for `O(NR CPUS * NR THREADS)` time. The fix involves changing `do task stat()` to use `sig->stats lock` to gather statistics outside of the `->siglock` protected section, allowing the code to run lockless in most cases.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.