Linux Kernel Sched Ext Component Error Handling Improvement Vulnerability

A vulnerability in the Linux kernel's sched_ext component could lead to a crash. This issue occurs when the sched_ext self-tests are interrupted while a specific test is running. The problem arises because the error handling for a failed creation of a helper kernel thread is inadequate. When the thread creation fails, the error is not properly managed, causing the scx_enable function to dereference an invalid pointer, which can lead to a crash. The vulnerability affects Linux kernel versions 6.16 and later.

Impact

The vulnerability can cause a system crash by leading to a null pointer dereference, which is a common cause of crashes in the Linux kernel.

Reproduction

To reproduce this vulnerability, run the sched_ext self-tests and then interrupt the process with Ctrl+\ while test 15 is executing. This will trigger the error handling flaw, causing a crash.

Remediation

Users can upgrade to the latest version of the Linux kernel stable tree, where this vulnerability has been addressed.