Linux Kernel Autogroup Migration Detection Vulnerability in the Scheduler

Vulnerability

A vulnerability in the Linux kernel's scheduling system has been addressed. The issue arose in the handling of autogroup migrations, where the function 'scx_move_task()' incorrectly filtered migration events. This mismanagement led to warnings about cgroup attachment, as the system failed to properly recognize certain migration scenarios. The vulnerability has been fixed by modifying the 'sched_move_task()' function to clearly distinguish between cgroup and autogroup migrations, ensuring that 'scx_move_task()' only processes cgroup-related migrations.

Impact

The vulnerability could cause incorrect handling of task migrations, leading to potential scheduling issues and performance degradation.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Autogroup Migration Detection Vulnerability in the Scheduler

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating