CVE-2024-44958

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.10.4

Description The issue is related to an unbalanced decrement and increment of sched smt present in the Linux kernel. When cpuset cpu inactive() fails in sched cpu deactivate(), the CPU offline fails, but sched smt present is decremented before calling sched cpu deactivate(), leading to an unbalanced dec/inc. This can cause a warning report with a negative count during stress testing. The problem is fixed by incrementing sched smt present in the error path.

Recommendations To resolve the issue, update the Linux kernel to version 6.10.4 or later. As a temporary workaround, consider disabling the sched smt() function until a patch is available. Restrict access to the vulnerable sched cpu deactivate() function to minimize the risk of exploitation. Avoid using the cpuset cpu inactive() parameter in the affected API endpoint until the issue is resolved.