CVE-2024-41932 (GCVE-0-2024-41932)

Vulnerability from cvelistv5 – Published: 2025-01-11 12:25 – Updated: 2026-05-11 20:26
VLAI
Title
sched: fix warning in sched_setaffinity
Summary
In the Linux kernel, the following vulnerability has been resolved: sched: fix warning in sched_setaffinity Commit 8f9ea86fdf99b added some logic to sched_setaffinity that included a WARN when a per-task affinity assignment races with a cpuset update. Specifically, we can have a race where a cpuset update results in the task affinity no longer being a subset of the cpuset. That's fine; we have a fallback to instead use the cpuset mask. However, we have a WARN set up that will trigger if the cpuset mask has no overlap at all with the requested task affinity. This shouldn't be a warning condition; its trivial to create this condition. Reproduced the warning by the following setup: - $PID inside a cpuset cgroup - another thread repeatedly switching the cpuset cpus from 1-2 to just 1 - another thread repeatedly setting the $PID affinity (via taskset) to 2
Severity
5.5 (Medium)
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Assigner
References
Impacted products
Vendor Product Version
Linux Linux Affected: 8f9ea86fdf99b81458cc21fc1c591fcd4a0fa1f4 , < 5c3fb75f538cfcb886f6dfeb497d99fc2f263ee6 (git)
Affected: 8f9ea86fdf99b81458cc21fc1c591fcd4a0fa1f4 , < 70ee7947a29029736a1a06c73a48ff37674a851b (git)
Create a notification for this product.
Linux Linux Affected: 6.2
Unaffected: 0 , < 6.2 (semver)
Unaffected: 6.12.5 , ≤ 6.12.* (semver)
Unaffected: 6.13 , ≤ * (original_commit_for_fix)
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "kernel/sched/syscalls.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "5c3fb75f538cfcb886f6dfeb497d99fc2f263ee6",
              "status": "affected",
              "version": "8f9ea86fdf99b81458cc21fc1c591fcd4a0fa1f4",
              "versionType": "git"
            },
            {
              "lessThan": "70ee7947a29029736a1a06c73a48ff37674a851b",
              "status": "affected",
              "version": "8f9ea86fdf99b81458cc21fc1c591fcd4a0fa1f4",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "kernel/sched/syscalls.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "6.2"
            },
            {
              "lessThan": "6.2",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.13",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.5",
                  "versionStartIncluding": "6.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.13",
                  "versionStartIncluding": "6.2",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched: fix warning in sched_setaffinity\n\nCommit 8f9ea86fdf99b added some logic to sched_setaffinity that included\na WARN when a per-task affinity assignment races with a cpuset update.\n\nSpecifically, we can have a race where a cpuset update results in the\ntask affinity no longer being a subset of the cpuset. That\u0027s fine; we\nhave a fallback to instead use the cpuset mask. However, we have a WARN\nset up that will trigger if the cpuset mask has no overlap at all with\nthe requested task affinity. This shouldn\u0027t be a warning condition; its\ntrivial to create this condition.\n\nReproduced the warning by the following setup:\n\n- $PID inside a cpuset cgroup\n- another thread repeatedly switching the cpuset cpus from 1-2 to just 1\n- another thread repeatedly setting the $PID affinity (via taskset) to 2"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T20:26:13.072Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/5c3fb75f538cfcb886f6dfeb497d99fc2f263ee6"
        },
        {
          "url": "https://git.kernel.org/stable/c/70ee7947a29029736a1a06c73a48ff37674a851b"
        }
      ],
      "title": "sched: fix warning in sched_setaffinity",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-41932",
    "datePublished": "2025-01-11T12:25:08.892Z",
    "dateReserved": "2025-01-09T09:51:32.405Z",
    "dateUpdated": "2026-05-11T20:26:13.072Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2024-41932",
      "date": "2026-06-05",
      "epss": "8e-05",
      "percentile": "0.00834"
    },
    "fkie_nvd": {
      "descriptions": "[{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nsched: fix warning in sched_setaffinity\\n\\nCommit 8f9ea86fdf99b added some logic to sched_setaffinity that included\\na WARN when a per-task affinity assignment races with a cpuset update.\\n\\nSpecifically, we can have a race where a cpuset update results in the\\ntask affinity no longer being a subset of the cpuset. That\u0027s fine; we\\nhave a fallback to instead use the cpuset mask. However, we have a WARN\\nset up that will trigger if the cpuset mask has no overlap at all with\\nthe requested task affinity. This shouldn\u0027t be a warning condition; its\\ntrivial to create this condition.\\n\\nReproduced the warning by the following setup:\\n\\n- $PID inside a cpuset cgroup\\n- another thread repeatedly switching the cpuset cpus from 1-2 to just 1\\n- another thread repeatedly setting the $PID affinity (via taskset) to 2\"}]",
      "id": "CVE-2024-41932",
      "lastModified": "2025-01-11T13:15:20.930",
      "published": "2025-01-11T13:15:20.930",
      "references": "[{\"url\": \"https://git.kernel.org/stable/c/5c3fb75f538cfcb886f6dfeb497d99fc2f263ee6\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/70ee7947a29029736a1a06c73a48ff37674a851b\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}]",
      "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
      "vulnStatus": "Received"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-41932\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2025-01-11T13:15:20.930\",\"lastModified\":\"2025-10-15T20:17:52.590\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nsched: fix warning in sched_setaffinity\\n\\nCommit 8f9ea86fdf99b added some logic to sched_setaffinity that included\\na WARN when a per-task affinity assignment races with a cpuset update.\\n\\nSpecifically, we can have a race where a cpuset update results in the\\ntask affinity no longer being a subset of the cpuset. That\u0027s fine; we\\nhave a fallback to instead use the cpuset mask. However, we have a WARN\\nset up that will trigger if the cpuset mask has no overlap at all with\\nthe requested task affinity. This shouldn\u0027t be a warning condition; its\\ntrivial to create this condition.\\n\\nReproduced the warning by the following setup:\\n\\n- $PID inside a cpuset cgroup\\n- another thread repeatedly switching the cpuset cpus from 1-2 to just 1\\n- another thread repeatedly setting the $PID affinity (via taskset) to 2\"},{\"lang\":\"es\",\"value\":\"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: sched: correcci\u00f3n de advertencia en sched_setaffinity El commit 8f9ea86fdf99b agreg\u00f3 algo de l\u00f3gica a sched_setaffinity que inclu\u00eda una ADVERTENCIA cuando una asignaci\u00f3n de afinidad por tarea compite con una actualizaci\u00f3n de cpuset. Espec\u00edficamente, podemos tener una ejecuci\u00f3n donde una actualizaci\u00f3n de cpuset da como resultado que la afinidad de la tarea ya no sea un subconjunto del cpuset. Eso est\u00e1 bien; tenemos una alternativa para usar la m\u00e1scara de cpuset. Sin embargo, tenemos una ADVERTENCIA configurada que se activar\u00e1 si la m\u00e1scara de cpuset no se superpone en absoluto con la afinidad de la tarea solicitada. Esto no deber\u00eda ser una condici\u00f3n de advertencia; es trivial crear esta condici\u00f3n. Se reprodujo la advertencia con la siguiente configuraci\u00f3n: - $PID dentro de un cgroup de cpuset - otro hilo que cambia repetidamente las CPU de cpuset de 1-2 a solo 1 - otro hilo que establece repetidamente la afinidad $PID (a trav\u00e9s del conjunto de tareas) en 2\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.2\",\"versionEndExcluding\":\"6.12.5\",\"matchCriteriaId\":\"16E69688-BAA9-48D3-92F4-FD40FC420D47\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.13:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"62567B3C-6CEE-46D0-BC2E-B3717FBF7D13\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.13:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"5A073481-106D-4B15-B4C7-FB0213B8E1D4\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/5c3fb75f538cfcb886f6dfeb497d99fc2f263ee6\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/70ee7947a29029736a1a06c73a48ff37674a851b\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.





Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.


Detection rules are retrieved from Rulezet.