CVE-2024-44975

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.0-10893-g60d6

Description The issue is caused by the incorrect rebuilding of scheduling domains in the Linux kernel. Specifically, when calling update parent effective cpumask with partcmd update, if newmask is not null, it should recheck newmask to see if there are CPUs available for parect/cs that have tasks. However, in this scenario, test/cpuset.cpus.partition should be an invalid root and should not trigger the rebuilding of scheduling domains.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for this vulnerability. If an update is not available, consider temporarily disabling the cpuset feature or restricting access to the vulnerable cpuset.cpus.partition file until a patch is available. Additionally, avoid using the partcmd update function with a non-null newmask until the issue is resolved.

Note: The provided information does not specify the exact fixed version, so it is recommended to update to the latest available version of the Linux kernel.